You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/page-shield/troubleshooting.mdx
+7-11Lines changed: 7 additions & 11 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -8,23 +8,19 @@ sidebar:
8
8
9
9
import { GlossaryTooltip } from"~/components";
10
10
11
-
### How do I set up Page Shield?
11
+
##Cloudflare does not show any client-side resources after activation
12
12
13
-
For help setting up Page Shield, refer to our [get started guide](/page-shield/get-started/).
13
+
Cloudflare does not collect data on every single page view. Instead, it uses a sampling approach to gather information efficiently. This means that domains with lower traffic might take longer to generate initial reports, as these domains need more page views to accumulate enough samples. To speed up the reporting process, it is recommended that you actively generate traffic to your application after [activating client-side resource monitoring](/page-shield/get-started/). This will provide Cloudflare with more data to work with, leading to faster report generation.
14
14
15
-
## Page Shield does not show any resources after activating it
16
-
17
-
Page Shield does not collect data on every single page view. Instead, it uses a sampling approach to gather information efficiently. This means that domains with lower traffic might take longer to generate initial reports, as these domains need more page views to accumulate enough samples. To speed up the reporting process, it is recommended that you actively generate traffic to your application after [activating Page Shield](/page-shield/get-started/). This will provide Page Shield with more data to work with, leading to faster report generation.
18
-
19
-
## Page Shield shows scripts and connections that I do not recognize
15
+
## The dashboard shows scripts and connections that I do not recognize
20
16
21
17
Scripts often reference other scripts outside your application.
22
18
23
-
But, if you see unexpected scripts on your Script Monitor dashboard, check them for signs of malicious activity.
19
+
But, if you see unexpected scripts on your resource monitoring dashboard, check them for signs of malicious activity.
24
20
25
21
## I get warnings in my browser's developer tools related to Content Security Policy (CSP)
26
22
27
-
Page Shield uses a <GlossaryTooltipterm="content security policy (CSP)">Content Security Policy (CSP)</GlossaryTooltip> report-only directive to gather a list of all scripts running on your application.
23
+
Cloudflare uses a <GlossaryTooltipterm="content security policy (CSP)">Content Security Policy (CSP)</GlossaryTooltip> report-only directive to gather a list of all scripts running on your application.
28
24
29
25
Some browsers display scripts being reported as warnings in the console pane of their developer tools. For example:
30
26
@@ -36,13 +32,13 @@ Either the 'unsafe-inline' keyword, a hash ('sha256-RFWPLDbv2BY+rCkDzsE+0fr8ylGr
36
32
is required to enable inline execution.
37
33
```
38
34
39
-
You can safely ignore these warnings, since they are related to the reports that Page Shield requires to detect loaded scripts. For more information, refer to [How Page Shield works](/page-shield/how-it-works/).
35
+
You can safely ignore these warnings, since they are related to the reports that Cloudflare requires to detect loaded scripts. For more information, refer to [How Page Shield works](/page-shield/how-it-works/).
40
36
41
37
## I get policy violation reports for a domain I allowlisted
42
38
43
39
Policy violations reported via CSP's [report-only directive](/page-shield/reference/csp-header/) do not take into consideration any redirects or redirect HTTP status codes. This is [by design](https://www.w3.org/TR/CSP3/#create-violation-for-request) for security reasons.
44
40
45
-
Some third-party services you may want to cover in your Page Shield allow policies perform redirects. An example of such a service is Google Ads, which [does not work well with CSP policies](https://support.google.com/adsense/thread/102839782?hl=en&msgid=103611259).
41
+
Some third-party services you may want to cover in your allow policies perform redirects. An example of such a service is Google Ads, which [does not work well with CSP policies](https://support.google.com/adsense/thread/102839782?hl=en&msgid=103611259).
46
42
47
43
For example, if you add the `adservice.google.com` domain to an allow policy, you could get policy violation reports for this domain due to redirects to a different domain (not present in your allow policy). In this case, the violation report would still mention the original domain, and not the domain of the redirected destination, which can cause some confusion.
0 commit comments