web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Pages / Implementation of Cont...
Power Pages
Unanswered

Implementation of Content Security Policy impacting the performance of the site

(0) ShareShare
ReportReport
Posted on by NikhilDey 26

We implemented the Content Security Policy in our power pages site, but now CSS and JS is loading very slowly for each and every web page.

Is there any resolution in which we can implement CSP and it does not impact the performance of the website?

Categories:
General topics
I have the same question (0)
  • OOlashyn Profile Picture
    OOlashyn 3,496 Most Valuable Professional on at

    Hi @NikhilDey ,

    Can you try to set HTTP/Content-Security-Policy/Inject-unsafe-eval to False and see if that improves things? Basically, when you enable CSP Power Pages inserts unsafe-eval to support automatic-evaluation of unsafe code (see at the end of this article https://learn.microsoft.com/en-us/power-pages/security/manage-content-security-policy) which in theory might affect performance. Keep in mind - this is needed for basic and multi-step forms so setting this to false might affect them. I would advise opening a ticket with MS regarding this - CSP shouldn't affect performance and I had instances in the past where after updating some site settings portal was slower and opening a ticket with MS and them doing something on the backend fixed that.

  • NikhilDey Profile Picture
    NikhilDey 26 on at

    Hi @Lucas001 ,

    Thank you for your reply.

     

    We have added the site settings in the power portal management, "HTTP/Content-Security-Policy" with value "script-src https: 'nonce'" due to which we are facing the performance issue.

    I think this may be happening because it is matching cryptographical nonce value with the above mentioned site settings header, which might have increased the processing time for applying the inline scripts.

     

    In our site we are not using any third party plugins as such which will increase the loading time significantly.

  • Lucas001 Profile Picture
    Lucas001 2,502 Super User 2025 Season 2 on at

    Hi @NikhilDey,

     

    it not affect your page loading time. Did you try it again some time later?

    Can you have a look at the network data and see what's taking so long and if it's really js and css.

     

    Did you implement a third party plugin or something similar? These seems to affect the loading time with enabled CSP.

     

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!

Quick Links

Forum hierarchy changes are complete!

In our never-ending quest to improve we are simplifying the forum hierarchy…

Ajay Kumar Gannamaneni – Community Spotlight

We are honored to recognize Ajay Kumar Gannamaneni as our Community Spotlight for December…

Congratulations to the December Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Pages

#1
Fubar Profile Picture

Fubar 55 Super User 2025 Season 2

#2
Lucas001 Profile Picture

Lucas001 25 Super User 2025 Season 2

#3
Jerald Felix Profile Picture

Jerald Felix 21

Last 30 days Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals
Welcome to the Power Pages forum!

Product updates

Microsoft Power Platform Community release plans