Pricing Docs Academy

Having issues with WebContainer iframe CSP in Toddle

Funktionalized

22 days ago

I'm implementing WebContainers.io in my Toddle app and encountering CSP-related issues. I have a Cloudflare Worker that sets the required security headers, which works in other environments but not in Toddle.

Error messages indicate CSP blocks:
- Inline scripts (needs 'unsafe-inline' or hash)
- External scripts from WebContainer domains
- Default-src is set to 'none'

Is this a Toddle-specific limitation? Are there any known workarounds for using WebContainer within Toddle's environment?

Leave a comment

Stop scrolling. Start building.

toddle is a visual web app builder that rivals custom code — but accessible to your entire team!

Try toddle — it's free!

The two toddle Co-Founders Andreas and Kasper

Chat with @team-toddle

CEO and Co-Founder of toddle Andreas Møller

Video call our CEO

Hello, toddle!

Get in touch!

Product

Pricing Packages T&Cs Privacy Policy

Company

Press kit Contact
Become partner Refer and earn

Resources

Documentation Academy Integrations Blog Founder stories Hire experts

Community

Discord LinkedIn X YouTube

© Copyright 2024 toddle. All rights reserved.

Built in toddle