<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
</head>
<body>
Can you browse to<br>
<a class="moz-txt-link-freetext" href="https://www.recaptcha.net">https://www.recaptcha.net</a><br>
okay from a web browser?<br>
<br>
If so, the thing to check is your<br>
<tt> /etc/httpd/conf.d/zendto-ssl.conf</tt><br>
or<br>
<tt> /etc/apache2/sites-available/001-zendto-ssl.conf</tt><br>
file.<br>
<br>
In that file, look for this setting:<br>
<tt> Header set Content-Security-Policy</tt><br>
If that setting does not include recaptcha.net at all, then replace
that line with this line:<br>
<tt> Header set Content-Security-Policy "default-src 'none';
script-src 'self' 'unsafe-inline' <a class="moz-txt-link-freetext" href="https://www.google.com">https://www.google.com</a>
<a class="moz-txt-link-freetext" href="https://www.gstatic.com">https://www.gstatic.com</a> <a class="moz-txt-link-freetext" href="https://www.recaptcha.net">https://www.recaptcha.net</a>; connect-src
'self' 'unsafe-inline'; img-src * ; font-src 'self'
'unsafe-inline' <a class="moz-txt-link-freetext" href="https://fonts.googleapis.com">https://fonts.googleapis.com</a>
<a class="moz-txt-link-freetext" href="https://fonts.gstatic.com">https://fonts.gstatic.com</a>; style-src 'self' 'unsafe-inline'
<a class="moz-txt-link-freetext" href="https://fonts.googleapis.com">https://fonts.googleapis.com</a>; frame-src 'self' 'unsafe-inline'
<a class="moz-txt-link-freetext" href="https://www.google.com">https://www.google.com</a> <a class="moz-txt-link-freetext" href="https://www.gstatic.com">https://www.gstatic.com</a>"</tt><br>
<br>
Then restart Apache with<br>
<tt> systemctl restart httpd</tt><br>
or<br>
<tt> systemctl restart apache2</tt><br>
<br>
Let me know if that fixes it for you.<br>
<br>
Cheers,<br>
Jules.<br>
<br>
<div class="moz-cite-prefix">On 08/05/2020 00:03, Chris Venter via
ZendTo wrote:<br>
</div>
<blockquote type="cite"
cite="mid:WM!217601631a2425d00fa3ecd5723a560042aafd146a3d2613829ce16c0ae58c379e697bb57426b88ac1dde1941c3e8a6a!@mx.jul.es">
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
<div dir="ltr">
<div>Hi</div>
<div><br>
</div>
<div>After upgrading to the latest version I noticed that the
Re-captcha was not showing (Using V2 Checkbox), after digging
around in the page source I noticed that the site is now using
<span><<span class="gmail-start-tag">script</span> <span
class="gmail-attribute-name">src</span>="<a
href="https://www.recaptcha.net/recaptcha/api.js?hl=en-GB"
moz-do-not-send="true">https://www.recaptcha.net/recaptcha/api.js?hl=en-GB</a><span><span
class="error" title="“&” did not start a character
reference. (“&” probably should have been escaped as
“&”.)">&</span>o</span>nload=onloadCallback<span><span
class="error" title="“&” did not start a character
reference. (“&” probably should have been escaped as
“&”.)">&</span>re</span>nder=explicit" <span
class="gmail-attribute-name">async</span> <span
class="gmail-attribute-name">defer</span>></span><span></span><span></<span
class="end-tag">script</span>></span> changing this
back to<span> <<span class="gmail-start-tag">script</span>
<span class="gmail-attribute-name">src</span>="<a
href="https://www.google.com/recaptcha/api.js?hl=en-GB"
moz-do-not-send="true">https://www.google.com/recaptcha/api.js?hl=en-GB</a><span><span
class="error" title="“&” did not start a character
reference. (“&” probably should have been escaped as
“&”.)">&</span>o</span>nload=onloadCallback<span><span
class="error" title="“&” did not start a character
reference. (“&” probably should have been escaped as
“&”.)">&</span>re</span>nder=explicit" <span
class="gmail-attribute-name">async</span> <span
class="gmail-attribute-name">defer</span>></span><span></span><span></<span
class="end-tag">script</span>> </span><span></span>fixed
the issue.</div>
<div><br>
</div>
<div> I know that using the <a href="http://recaptcha.net"
moz-do-not-send="true">recaptcha.net</a> has something to do
with global use and allowing recaptcha in countries where <a
href="http://google.com" moz-do-not-send="true">google.com</a>
is not accessible, I think, but as I do not know too much
about google captcha could this be a setting I have wrong on
the google side of things I was looking in the admin console
and there does not seem to be too many settings though?</div>
<div><br>
</div>
<div>Thanks for the great product any help would be appreciated,
<br>
</div>
<div><br>
</div>
<div>Regards<br>
</div>
<div>Chris <br>
</div>
<div><br>
</div>
<div> <br>
</div>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<pre class="moz-quote-pre" wrap="">_______________________________________________
ZendTo mailing list
<a class="moz-txt-link-abbreviated" href="mailto:ZendTo@zend.to">ZendTo@zend.to</a>
<a class="moz-txt-link-freetext" href="http://jul.es/mailman/listinfo/zendto">http://jul.es/mailman/listinfo/zendto</a>
</pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">Jules
--
Julian Field MEng CEng CITP MBCS MIEEE MACM
'What happened in the past that was painful, has a great deal to
do with what we are today.' - William Glasser
<a class="moz-txt-link-abbreviated" href="http://www.Zend.To">www.Zend.To</a>
Twitter: @JulesFM
</pre>
</body>
</html>