Posted 7 March 2018, 7:47 pm EST
Hi,
We found that Pasting data from a local excel file is not working in EDGE when we have content security enabled.
We are using content security policy enabled, with frame-src to be a acceptable from a whitelisted domains as following
HttpContext.Current.Response.Headers.Add("Content-Security-Policy", "frame-src 'self' https://apis.google.com");
When we have this in response headers of our page… copying and pasting range of cells from an excel file to spread is pasting the entire data in appropriately.
Please find the attached files and connect it to probably IIS server to test it.
Steps to reproduce:
-
Extract the attached folder and link it with IIS server
-
Browse http://localhost/test/Test.aspx in EDGE browser
-
You will see that spread is loaded in an Iframe
-
Now copy the range B6 to J6 and paste it in above spread
Expected: content of 9 cells to be pasted in 9 cells
Actual: Content of 9 cells is being pasted in 1 cell
Note: you can see an error in the console of the browser saying:
CSP14312: Resource violated directive ‘frame-src ‘self’ https://apis.google.com’ in Content-Security-Policy: file:///C:/Users/vmalepati/Desktop/Book1.xlsx. Resource will be blocked.