- Error 400: invalid_request
Google: Permission denied to generate login hint - “Not a valid origin for the client: http://127.0.0.…egister this origin for your project’s client ID.”
- The source list for Content Security Policy directive ‘script-src’ contains an invalid source: ‘’strict-dynamic’’. It will be ignored.
For the number 1 and 2, you should check ‘ Authorized Javascript Origins’ url. You can not use the numeric url(http://127.0.0.1:8080) here, so change that url to ‘localhost:8080’.
To get this url, use the command ‘npx ngrok http 8080’ on your console.
For the number 3 error, you should check if you’re using the safari. It is not an error but a warning that your browser does not support the ‘strict-dynamic’ token.
https://stackoverflow.com/questions/65094328/how-to-fix-content-security-policy-contains-an-invalid-source-error
AND clean the cache/cookie.
