I have a site located at netdec.com.
For some reason my Content Security Policy is blocking the page in Firefox on the clients computer (fine on mine).
Strangely it only blocks the page on first load, then you can navigate the site freely after that, even returning to the home page with no issue.
I am completely stuck as all it reports is
Content Security Policy: The page's settings blocked the loading...... etc.
It blocks styles, scripts and images.
My CSP is as follows (looks OK to me??):-
content-security-policy: default-src 'none';
script-src 'self' https://www.google-analytics.com 'nonce-CoDvWxrWxVlIpvPg' 'nonce-A9HEur9AngDPpVd1' 'nonce-jQxgnZdVUyDj4tAE' 'nonce-Dij7JtI7KmW9h9bA' 'nonce-0IRnH4jCCXWGqxl3';
object-src 'none';
base-uri 'none';
frame-ancestors 'none';
form-action 'self';
img-src 'self' https://www.google-analytics.com data:;
style-src 'self' 'unsafe-inline';
manifest-src 'self';
connect-src 'self' https://www.google-analytics.com
Any help appreciated!!