ACSD-60788: Custom scripts for Google Tag Manager are not executed due to Content Security Policy errors
The ACSD-60788 patch fixes the issue where custom scripts for Google Tag Manager are not executed due to Content Security Policy errors. This patch is available when the Quality Patches Tool (QPT) 1.1.52 is installed. The patch ID is ACSD-60788. Please note that this issue is scheduled to be fixed in Adobe Commerce 2.4.8.
Affected products and versions
The patch is created for Adobe Commerce version:
Adobe Commerce (all deployment methods) 2.4.7-p1
Compatible with Adobe Commerce versions:
Adobe Commerce (all deployment methods) 2.4.7 - 2.4.7-p3
magento/quality-patches
package to the latest version and check the compatibility on the Quality Patches Tool: Search for patches page. Use the patch ID as a search keyword to locate the patch.Issue
Custom scripts for Google Tag Manager are not executed due to Content Security Policy (CSP) errors.
Steps to reproduce:
-
Set up the Google Tag Manager variable.
-
Set up the Google Tag Manager Custom HTML Tag.
-
Place the following JavaScript code in the first Tag:
code language-none <script nonce="{{gtmNonce}}"> console.log("Nonce from simple JS {{gtmNonce}}"); </script>
-
Flush caches after setting up the GTM.
-
Open the developer console in your browser.
-
Open the Home Page.
Expected results:
The browser dev console displays Nonce from simple JS (random characters).
Actual results:
The browser dev console displays Nonce from simple JS undefined.
Apply the patch
To apply individual patches, use the following links depending on your deployment method:
- Adobe Commerce or Magento Open Source on-premises: Quality Patches Tool > Usage in the Quality Patches Tool guide.
- Adobe Commerce on cloud infrastructure: Upgrades and Patches > Apply Patches in the Commerce on Cloud Infrastructure guide.
Related reading
To learn more about Quality Patches Tool, refer to:
- Quality Patches Tool released: a new tool to self-serve quality patches in the support knowledge base.
- Check if patch is available for your Adobe Commerce issue using Quality Patches Tool in the Quality Patches Tool guide.
For info about other patches available in QPT, refer to Quality Patches Tool: Search for patches in the Quality Patches Tool guide.