Hi,
I have the plugin, bought a license, and followed the steps under the CSP tab up to step 3. The CSP has been added to our htaccess file in report-only mode.
On step 4 it says:
Paste the CSP into Settings → CSP Header Contents with "Content-Security-Policy-Report-Only" first (enable in your server config or use a Report URI service).
What exactly should I paste into the CSP Header Contents box tso that the CSP is in report-only mode, please?
