I’m stumped.
My mobile app has two external sources:
- Fonts: https://fonts.googleapis.com
- My server with data: https://serverapp.xxxxxxx.com
In the future, fonts will be moved to local app resources. Now I use them as a test.
So. I at first encountered a CORS problem when I was getting data from my server. After studying the problem and configuring the hosting, I solved it. The data began to arrive correctly.
Then I set up the CSP policy:
<meta http-equiv="Content-Security-Policy" content="default-src * 'self' 'unsafe-inline' 'unsafe-eval' data: gap: https://*.googleapis.com https://serverapp.xxxxxxx.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com ; media-src *; img-src 'self' https://serverapp.xxxxxxx.com data: content:;">
Checked the settings of the “cordova-plugin-whitelist” plugin:
<access origin="*" />
<allow-intent href="http://*/*" />
<allow-intent href="https://*/*" />
But every time I check, I get the same result: there are no errors in the browser (developer console), the app works correctly in the emulator, but when building and installing on a smartphone, the app has no data from my server and no Google fonts.
@Dave @mebeingken @s.alpaslan Perhaps faced with something similar? Any ideas?
Thank you in advance