When HTTP Header Content-Security-Policy is set to "Default-src 'self', ASP text box does not get hidden
This is the piece of code which used to be "hidden" from user, but by setting Content-Security-Policy to Default-src 'self', it shows up on the UI on FireFox and Chrome. It hides correctly on IE.
<div style="position: relative; float: left;">
<asp:TextBox ID="txtTop" runat="server" Width="0px" Height="0px" Style="background: #517ca6;
background-color: #517ca6; color: #517ca6;" BorderStyle="None"></asp:T
Any suggestion on how we can keep the control hidden, and be able to set Content-Security-Policy to Default-src 'self'?