Working with the Twitter API, I received the following message in the browser when attempting to authenticate:
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src link link . "Either the 'unsafe-inline' keyword, the hash ('sha256-4Su6mBWzEIFnH4pAGMOuaeBrstwJN4Z3pq / s1Kn4 / KQ ='), or a nonce ('nonce -...') is required to enable inline execution.
Researching the problem, I found out about the Content Security Policy (CSP) that dictates some security rules, but I did not find something that explains how that would be a problem.