web
You’re offline. This is a read only version of the page.
close
Skip to main content

Announcements

Welcome to the Power Platform Communities
Your Invited to Keeping It Real with the Power Platform
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Pages / CSP Issues in Power Pa...
Power Pages
Suggested Answer

CSP Issues in Power Pages with Azure Maps (blob worker & data URL blocked)

(0) ShareShare
ReportReport
Posted on by NileshKhonde 14

Hi Team,

I’m currently working on a Power Pages portal where I’ve integrated Azure Maps along with a custom feature to download usage data as an Excel file.

While configuring Content Security Policy (CSP) using the HTTP/Content-Security-Policy site setting, I’m facing multiple issues related to blocked resources.

Issues I’m facing

1. Azure Maps Worker Issue

I’m getting the below error in the console:

Creating a worker from 'blob:...' violates the following Content Security Policy directive: "script-src ..."
Note that 'worker-src' was not explicitly set

2. Data URL Blocked

Another error I’m seeing:

Connecting to 'data:image/svg+xml;base64,...' violates the following Content Security Policy directive: "connect-src ..."

3. External Script (XLSX CDN) Blocked

Loading the script 'https://cdnjs.cloudflare.com/...' violates CSP

Current CSP Configuration

Here is the CSP value I’ve configured in Site Settings:

script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.powerapps.com https://*.powerpages.microsoft.com https://*.microsoftonline.com https://*.dynamics.com https://*.azureedge.net https://atlas.microsoft.com https://*.atlas.microsoft.com https://cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' https://*.powerapps.com https://*.powerpages.microsoft.com https://*.azureedge.net https://atlas.microsoft.com https://*.atlas.microsoft.com; img-src 'self' data: blob: https://*.powerapps.com https://*.powerpages.microsoft.com https://*.azureedge.net https://atlas.microsoft.com https://*.atlas.microsoft.com; connect-src 'self' https://*.powerapps.com https://*.powerpages.microsoft.com https://*.microsoft.com https://*.dynamics.com https://atlas.microsoft.com https://*.atlas.microsoft.com; font-src 'self' https://*.azureedge.net https://atlas.microsoft.com https://*.atlas.microsoft.com;

Questions

  1. What is the recommended CSP configuration for Azure Maps in Power Pages, especially regarding blob: and Web Workers?

  2. Should worker-src be explicitly defined in Power Pages CSP?

  3. Is it safe to include data: in connect-src for scenarios like SVG/base64 images?

  4. Is there a best practice for handling external libraries like XLSX (CDN vs Web Files)?

I will attach screenshots of the errors and CSP headers for reference.

Any guidance or best practices would be really helpful.

Thanks in advance!

Screenshot 2026-04-13 123453.png
Screenshot 2026-04-13 123548.png
Categories:
Customize & extend
Security
I have the same question (0)
  • Suggested answer
    oliver.rodrigues Profile Picture
    oliver.rodrigues 9,461 Most Valuable Professional on at
    Hello, my first recommendation here would be to explicitly add those tags/urls to your CSP
     
    Also, I noticed you ended up sharing your Portal URL here, maybe avoid that since this is a public forum
     
    what are you using the data for? is that a local image or something? 

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Your Invited to Keeping It Real with the Power Platform

Quick Links

Introducing the 2026 Season 1 community Super Users

Congratulations to our 2026 Super Users!

Kudos to our 2025 Community Spotlight Honorees

Congratulations to our 2025 community superstars!

Congratulations to the March Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Pages

#1
rezarizvii Profile Picture

rezarizvii 71

#2
DP_Prabh Profile Picture

DP_Prabh 36

#3
oliver.rodrigues Profile Picture

oliver.rodrigues 32 Most Valuable Professional

Last 30 days Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals
Welcome to the Power Pages forum!

Product updates

Microsoft Power Platform Community release plans