Game refusing to load

I've been reading through the forums and the looked at search engine results and it seems I have run into the same problem as many others. The game loads to the point of getting a message such as "contacting server" or loading dungeon maps" or something and freezes there. I am using firefox There are no antivirus programs running I've disabled all addons I have javascript enabled. Firewall is setup correctly Any help would be appreciated. I did download Chrome to se see if that would work and it did but I can feel the slowness and terribleness of it and i'd like to get rid of it asap so I can just use a good browser to play some DnD. Thanks

I've got the same issue! Here's my console log if this will help with solving it: Firebase Offline vtt.bundle.js:35345:128638 Player -NMgRiMq4NHMtZQ7nL4T is offline... vtt.bundle.js:16589:103797 Some cookies are misusing the recommended “SameSite“ attribute 6 Cookie “rack.session” has been rejected because it is already expired. editor Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at <a href="https://browser.sentry-cdn.com/5.15.4/bundle.min.js" rel="nofollow">https://browser.sentry-cdn.com/5.15.4/bundle.min.js</a>. (Reason: CORS request did not succeed). Status code: (null). None of the “sha384” hashes in the integrity attribute match the content of the subresource. editor Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”). content.js:59:206 Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”). content.js:59:421 This page uses the non standard property “zoom”. Consider using calc() in the relevant property values, or using “transform” along with “transform-origin: 0 0”. editor Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at <a href="https://browser.sentry-cdn.com/5.15.4/bundle.min.js" rel="nofollow">https://browser.sentry-cdn.com/5.15.4/bundle.min.js</a>. (Reason: CORS request did not succeed). Status code: (null). None of the “sha384” hashes in the integrity attribute match the content of the subresource. editor JQMIGRATE: Logging is active jquery.migrate.js:20:10 Layout was forced before the page was fully loaded. If stylesheets are not yet loaded this may cause a flash of unstyled content. jquery-1.9.1.js:9392:13 Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”). 3 jquery-1.9.1.js:1444:6 Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”). 3 jquery-1.9.1.js:1450:5 Loading failed for the &lt;script&gt; with source “<a href="https://www.datadoghq-browser-agent.com/datadog-rum.js”" rel="nofollow">https://www.datadoghq-browser-agent.com/datadog-rum.js”</a>. editor:265:1 Cookie “rack.session” has been rejected because it is already expired. startjs CAMPAIGN ID: 14557820 startjs:23:9 unreachable code after return statement vtt.bundle.js:35344:27281 WebRTC: RTCIceServer.url is deprecated! Use urls instead. vtt.bundle.js:20772 WebRTC: RTCIceServer.url is deprecated! Use urls instead. vtt.bundle.js:20772 WebRTC: RTCIceServer.url is deprecated! Use urls instead. vtt.bundle.js:20772 Babylon.js v5.35.1 - WebGL2 - Parallel shader compilation vtt.bundle.js:20840:47401 Uncaught TypeError: window.localStorage.getItem is not a function &nbsp;&nbsp;&nbsp; 70508 <a href="https://cdn.roll20.net/production/vtt.bundle.js:17183" rel="nofollow">https://cdn.roll20.net/production/vtt.bundle.js:17183</a> &nbsp;&nbsp;&nbsp; __webpack_require__ <a href="https://cdn.roll20.net/production/vtt.bundle.js:35342" rel="nofollow">https://cdn.roll20.net/production/vtt.bundle.js:35342</a> &nbsp;&nbsp;&nbsp; &lt;anonymous&gt; <a href="https://cdn.roll20.net/production/vtt.bundle.js:35344" rel="nofollow">https://cdn.roll20.net/production/vtt.bundle.js:35344</a> &nbsp;&nbsp;&nbsp; &lt;anonymous&gt; <a href="https://cdn.roll20.net/production/vtt.bundle.js:35520" rel="nofollow">https://cdn.roll20.net/production/vtt.bundle.js:35520</a> &nbsp;&nbsp;&nbsp; &lt;anonymous&gt; <a href="https://cdn.roll20.net/production/vtt.bundle.js:35520" rel="nofollow">https://cdn.roll20.net/production/vtt.bundle.js:35520</a> vtt.bundle.js:17183:1616 tuts loaded tutorial_tips.js:7:10 Uncaught TypeError: d20ext.finalPageLoad is not a function &nbsp;&nbsp;&nbsp; &lt;anonymous&gt; <a href="https://app.roll20.net/editor/startjs/?timestamp=1674922909&amp;disablewebgl=false&amp;forcelongpolling=false&amp;offsite=false&amp;fbdebug=false&amp;forcetouch=false:66" rel="nofollow">https://app.roll20.net/editor/startjs/?timestamp=1674922909&amp;disablewebgl=false&amp;forcelongpolling=false&amp;offsite=false&amp;fbdebug=false&amp;forcetouch=false:66</a> &nbsp;&nbsp;&nbsp; setTimeout handler* <a href="https://app.roll20.net/editor/startjs/?timestamp=1674922909&amp;disablewebgl=false&amp;forcelongpolling=false&amp;offsite=false&amp;fbdebug=false&amp;forcetouch=false:65" rel="nofollow">https://app.roll20.net/editor/startjs/?timestamp=1674922909&amp;disablewebgl=false&amp;forcelongpolling=false&amp;offsite=false&amp;fbdebug=false&amp;forcetouch=false:65</a> &nbsp;&nbsp;&nbsp; jQuery 11 startjs:66:8 InstallTrigger is deprecated and will be removed in the future. minerkill.js:22:7 onmozfullscreenchange is deprecated. minerkill.js:22:7 onmozfullscreenerror is deprecated. minerkill.js:22:7 Also, when I am able to access games, I can't load character sheets and often can't see rolls at all.

Same with me as well, but in addition the Art Library doesn't load either. I get the same set of errors on all my browsers Some cookies are misusing the recommended “SameSite“ attribute 17 Cookie “rack.session” has been rejected because it is already expired. editor This page uses the non standard property “zoom”. Consider using calc() in the relevant property values, or using “transform” along with “transform-origin: 0 0”. editor JQMIGRATE: Logging is active jquery.migrate.js:20:10 Layout was forced before the page was fully loaded. If stylesheets are not yet loaded this may cause a flash of unstyled content. jquery-1.9.1.js:9392:13 Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”). 3 jquery-1.9.1.js:1444:6 Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”). 3 jquery-1.9.1.js:1450:5 The script from “<a href="https://www.datadoghq-browser-agent.com/datadog-rum.js”" rel="nofollow">https://www.datadoghq-browser-agent.com/datadog-rum.js”</a> was loaded even though its MIME type (“”) is not a valid JavaScript MIME type. editor The script from “<a href="https://www.googletagmanager.com/gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x”" rel="nofollow">https://www.googletagmanager.com/gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x”</a> was loaded even though its MIME type (“”) is not a valid JavaScript MIME type. editor Cookie “rack.session” has been rejected because it is already expired. startjs CAMPAIGN ID: 12886502 startjs:23:9 WebRTC: RTCIceServer.url is deprecated! Use urls instead. 3 vtt.bundle.js:20772 WEBGL_debug_renderer_info is deprecated in Firefox and will be removed. Please use RENDERER. vtt.bundle.js:20840:55446 Babylon.js v5.35.1 - WebGL2 vtt.bundle.js:20840:47401 70 vtt.bundle.js:35345:126414 TOUCH SUPPORTED: false vtt.bundle.js:35376:82578 USING WEBGL ACCELERATION... vtt.bundle.js:35376:83083 WEBGL STARTUP SUCCESS vtt.bundle.js:35376:83525 Loading Custom character sheet. vtt.bundle.js:35452:58816 tuts loaded tutorial_tips.js:7:10 Invalid URI. Load of media resource&nbsp; failed. editor unreachable code after return statement ffmpeg-worker-webm.3.js:153:13433 unreachable code after return statement ffmpeg-worker-webm.3.js:164:111617 unreachable code after return statement ffmpeg-worker-webm.3.js:183:15520 unreachable code after return statement ffmpeg-worker-webm.3.js:187:17706 unreachable code after return statement ffmpeg-worker-webm.3.js:187:19502 unreachable code after return statement ffmpeg-worker-webm.3.js:189:21299 unreachable code after return statement ffmpeg-worker-webm.3.js:190:21237 unreachable code after return statement ffmpeg-worker-webm.3.js:194:17922 unreachable code after return statement ffmpeg-worker-webm.3.js:194:39367 unreachable code after return statement ffmpeg-worker-webm.3.js:197:71233 Successfully compiled asm.js code (total compilation time 1149ms) ffmpeg-worker-webm.3.js The script from “<a href="https://www.google-analytics.com/analytics.js”" rel="nofollow">https://www.google-analytics.com/analytics.js”</a> was loaded even though its MIME type (“”) is not a valid JavaScript MIME type. editor Final page load. vtt.bundle.js:35411:40126 Auth'ed. vtt.bundle.js:35379:8761 Go post auth! vtt.bundle.js:35379:9465 initial setup vtt.bundle.js:35379:9795 joining game... vtt.bundle.js:35379:27413 Player -N-SHzHlYNbCsWo1UR_F is offline... vtt.bundle.js:16589:103797 Player -NB4go-OVvnU2NaAlcj4 is offline... vtt.bundle.js:16589:103797 Player -NB4h6yQHrZrYMSapQBD is offline... vtt.bundle.js:16589:103797 Player -NB4h7L1XR6aZo2fARwD is offline... vtt.bundle.js:16589:103797 Deferred finish joining... vtt.bundle.js:35379:27499 Firebase Online vtt.bundle.js:35345:128425 We have 30 pages vtt.bundle.js:35379:11408 Joined channel 'campaign:12886502' successfully&nbsp; Object {&nbsp; } vtt.bundle.js:17141:112843 DOMException: The request is not allowed by the user agent or the platform in the current context. vtt.bundle.js:35509:93656 WEBGL_debug_renderer_info is deprecated in Firefox and will be removed. Please use RENDERER. vtt.bundle.js:18:2946 This site appears to use a scroll-linked positioning effect. This may not work well with asynchronous panning; see <a href="https://firefox-source-docs.mozilla.org/performance/scroll-linked_effects.html" rel="nofollow">https://firefox-source-docs.mozilla.org/performance/scroll-linked_effects.html</a> for further details and to join the discussion on related tools and features! editor Error loading graphic, probably due to CORS. Trying once without CORS for <a href="https://s3.amazonaws.com/files.d20.io/images/325229183/CVDqcfFbqg_6pea0V-GlYA/thumb.png?1674959384" rel="nofollow">https://s3.amazonaws.com/files.d20.io/images/325229183/CVDqcfFbqg_6pea0V-GlYA/thumb.png?1674959384</a> vtt.bundle.js:35345:102565 Second load attempt failed for <a href="https://s3.amazonaws.com/files.d20.io/images/325229183/CVDqcfFbqg_6pea0V-GlYA/thumb.png?16749593841675011073939" rel="nofollow">https://s3.amazonaws.com/files.d20.io/images/325229183/CVDqcfFbqg_6pea0V-GlYA/thumb.png?16749593841675011073939</a> vtt.bundle.js:35345:102547 Cookie “rack.session” has been rejected because it is already expired. validatefolderstructure Cookie “rack.session” has been rejected because it is already expired. 150 Cookie “rack.session” has been rejected because it is already expired. 30 Cookie “rack.session” has been rejected because it is already expired. 30 Cookie “rack.session” has been rejected because it is already expired. 30 Cookie “rack.session” has been rejected because it is already expired. 30

It seems to me that is a problem regarding cookies saved in your browser. Try to clean up your cookies by deleting them and check, if 3rd party cookies are accepted...

I think tons of us have this issue, I gave up and unsubbed - iv followed all the technical suggestions, tried numerous things they didn't suggest and have submitted a ticket, emailed and tweeted to no avail. I don't think its roll20 but after more than 2 months of difficulties I legitimately cannot find a fix.&nbsp;

Hi, I've been having a re-occurring issue, I've got two games running the moment, one just has the normal lag and can't open items from the journal from time to time but otherwise runs smoothly.&nbsp; My other game, Tyranny of Dragons, the characters are in Arauthators Lair, and the map continuously reloads on it's own.&nbsp; When it does this I get a blank map and can only see the name or health bars of the tokens, then after a delay the map reloads, at full zoom and it's only half the map if you zoom out plus I have no ability to manipulate any of the tokens.&nbsp; I have to reload or close Roll20 to get it working again only for it happen repeatedly in a session.&nbsp; I was told this had something to do with the the hardware acceleration but that is enabled as is recommended.&nbsp; I switched from Chrome to Firefox in hopes that would resolve the issue, but it didn't.&nbsp; The same thing happened.&nbsp; I've used Roll20 for three years, I've updated my computer since then, so I'd be surprised if this was an issue with my computer's capabilities.&nbsp; Here is my game log: JQMIGRATE: Logging is active ​ CAMPAIGN ID: 11403434 gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:76 Refused to load the script '<a href="https://static.ads-twitter.com/uwt.js" rel="nofollow">https://static.ads-twitter.com/uwt.js</a>' because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-eval' 'nonce-6SltcXmaTcJv5ocO' 'nonce-QLYjFpudci22A2kE' <a href="https://cdn.roll20.net" rel="nofollow">https://cdn.roll20.net</a> blob: <a href="https://www.datadoghq-browser-agent.com" rel="nofollow">https://www.datadoghq-browser-agent.com</a> <a href="http://cdn.inspectlet.com" rel="nofollow">http://cdn.inspectlet.com</a> https://*.googlesyndication.com https://*.doubleclick.net <a href="https://partner.googleadservices.com" rel="nofollow">https://partner.googleadservices.com</a> <a href="https://www.googletagservices.com" rel="nofollow">https://www.googletagservices.com</a> <a href="https://ssl.google-analytics.com" rel="nofollow">https://ssl.google-analytics.com</a> <a href="https://www.google-analytics.com" rel="nofollow">https://www.google-analytics.com</a> <a href="https://ajax.googleapis.com" rel="nofollow">https://ajax.googleapis.com</a> <a href="http://ajax.googleapis.com" rel="nofollow">http://ajax.googleapis.com</a> <a href="https://d3clqjduf2gvxg.cloudfront.net" rel="nofollow">https://d3clqjduf2gvxg.cloudfront.net</a> <a href="https://cdn.firebase.com" rel="nofollow">https://cdn.firebase.com</a> https://*.firebaseio.com https://*.tokbox.com https://*.opentok.com <a href="http://static.opentok.com" rel="nofollow">http://static.opentok.com</a> <a href="http://www.google-analytics.com" rel="nofollow">http://www.google-analytics.com</a> <a href="http://cdn.crowdin.com" rel="nofollow">http://cdn.crowdin.com</a> <a href="https://crowdin.com" rel="nofollow">https://crowdin.com</a> <a href="http://stun.l.google.com" rel="nofollow">http://stun.l.google.com</a> *.sentry-cdn.com https://*.fullstory.com <a href="https://www.googletagmanager.com" rel="nofollow">https://www.googletagmanager.com</a> https://*.refiner.io https://*.maze.co". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback. bc @ gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:76 vtt.bundle.js:20727 Babylon.js v5.43.2 - WebGL2 - Parallel shader compilation vtt.bundle.js:35536 70 vtt.bundle.js:35567 TOUCH SUPPORTED: false vtt.bundle.js:35567 USING WEBGL ACCELERATION... vtt.bundle.js:35567 WEBGL STARTUP SUCCESS vtt.bundle.js:35643 Loading Custom character sheet. tutorial_tips.js:7 tuts loaded gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:48 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-eval' 'nonce-6SltcXmaTcJv5ocO' 'nonce-QLYjFpudci22A2kE' <a href="https://cdn.roll20.net" rel="nofollow">https://cdn.roll20.net</a> blob: <a href="https://www.datadoghq-browser-agent.com" rel="nofollow">https://www.datadoghq-browser-agent.com</a> <a href="http://cdn.inspectlet.com" rel="nofollow">http://cdn.inspectlet.com</a> https://*.googlesyndication.com https://*.doubleclick.net <a href="https://partner.googleadservices.com" rel="nofollow">https://partner.googleadservices.com</a> <a href="https://www.googletagservices.com" rel="nofollow">https://www.googletagservices.com</a> <a href="https://ssl.google-analytics.com" rel="nofollow">https://ssl.google-analytics.com</a> <a href="https://www.google-analytics.com" rel="nofollow">https://www.google-analytics.com</a> <a href="https://ajax.googleapis.com" rel="nofollow">https://ajax.googleapis.com</a> <a href="http://ajax.googleapis.com" rel="nofollow">http://ajax.googleapis.com</a> <a href="https://d3clqjduf2gvxg.cloudfront.net" rel="nofollow">https://d3clqjduf2gvxg.cloudfront.net</a> <a href="https://cdn.firebase.com" rel="nofollow">https://cdn.firebase.com</a> https://*.firebaseio.com https://*.tokbox.com https://*.opentok.com <a href="http://static.opentok.com" rel="nofollow">http://static.opentok.com</a> <a href="http://www.google-analytics.com" rel="nofollow">http://www.google-analytics.com</a> <a href="http://cdn.crowdin.com" rel="nofollow">http://cdn.crowdin.com</a> <a href="https://crowdin.com" rel="nofollow">https://crowdin.com</a> <a href="http://stun.l.google.com" rel="nofollow">http://stun.l.google.com</a> *.sentry-cdn.com https://*.fullstory.com <a href="https://www.googletagmanager.com" rel="nofollow">https://www.googletagmanager.com</a> https://*.refiner.io https://*.maze.co". Either the 'unsafe-inline' keyword, a hash ('sha256-77bgQblnRaKk1m8aq2FHqKiER4ywljc0EoTvK4RBca4='), or a nonce ('nonce-...') is required to enable inline execution. f.aa @ gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:48 gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:48 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-eval' 'nonce-6SltcXmaTcJv5ocO' 'nonce-QLYjFpudci22A2kE' <a href="https://cdn.roll20.net" rel="nofollow">https://cdn.roll20.net</a> blob: <a href="https://www.datadoghq-browser-agent.com" rel="nofollow">https://www.datadoghq-browser-agent.com</a> <a href="http://cdn.inspectlet.com" rel="nofollow">http://cdn.inspectlet.com</a> https://*.googlesyndication.com https://*.doubleclick.net <a href="https://partner.googleadservices.com" rel="nofollow">https://partner.googleadservices.com</a> <a href="https://www.googletagservices.com" rel="nofollow">https://www.googletagservices.com</a> <a href="https://ssl.google-analytics.com" rel="nofollow">https://ssl.google-analytics.com</a> <a href="https://www.google-analytics.com" rel="nofollow">https://www.google-analytics.com</a> <a href="https://ajax.googleapis.com" rel="nofollow">https://ajax.googleapis.com</a> <a href="http://ajax.googleapis.com" rel="nofollow">http://ajax.googleapis.com</a> <a href="https://d3clqjduf2gvxg.cloudfront.net" rel="nofollow">https://d3clqjduf2gvxg.cloudfront.net</a> <a href="https://cdn.firebase.com" rel="nofollow">https://cdn.firebase.com</a> https://*.firebaseio.com https://*.tokbox.com https://*.opentok.com <a href="http://static.opentok.com" rel="nofollow">http://static.opentok.com</a> <a href="http://www.google-analytics.com" rel="nofollow">http://www.google-analytics.com</a> <a href="http://cdn.crowdin.com" rel="nofollow">http://cdn.crowdin.com</a> <a href="https://crowdin.com" rel="nofollow">https://crowdin.com</a> <a href="http://stun.l.google.com" rel="nofollow">http://stun.l.google.com</a> *.sentry-cdn.com https://*.fullstory.com <a href="https://www.googletagmanager.com" rel="nofollow">https://www.googletagmanager.com</a> https://*.refiner.io https://*.maze.co". Either the 'unsafe-inline' keyword, a hash ('sha256-ZdDTEfl8xrGn7iZ/2mMDizDIe6JRmep2vz9STHJi4Zs='), or a nonce ('nonce-...') is required to enable inline execution. f.aa @ gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:48 gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:48 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-eval' 'nonce-6SltcXmaTcJv5ocO' 'nonce-QLYjFpudci22A2kE' <a href="https://cdn.roll20.net" rel="nofollow">https://cdn.roll20.net</a> blob: <a href="https://www.datadoghq-browser-agent.com" rel="nofollow">https://www.datadoghq-browser-agent.com</a> <a href="http://cdn.inspectlet.com" rel="nofollow">http://cdn.inspectlet.com</a> https://*.googlesyndication.com https://*.doubleclick.net <a href="https://partner.googleadservices.com" rel="nofollow">https://partner.googleadservices.com</a> <a href="https://www.googletagservices.com" rel="nofollow">https://www.googletagservices.com</a> <a href="https://ssl.google-analytics.com" rel="nofollow">https://ssl.google-analytics.com</a> <a href="https://www.google-analytics.com" rel="nofollow">https://www.google-analytics.com</a> <a href="https://ajax.googleapis.com" rel="nofollow">https://ajax.googleapis.com</a> <a href="http://ajax.googleapis.com" rel="nofollow">http://ajax.googleapis.com</a> <a href="https://d3clqjduf2gvxg.cloudfront.net" rel="nofollow">https://d3clqjduf2gvxg.cloudfront.net</a> <a href="https://cdn.firebase.com" rel="nofollow">https://cdn.firebase.com</a> https://*.firebaseio.com https://*.tokbox.com https://*.opentok.com <a href="http://static.opentok.com" rel="nofollow">http://static.opentok.com</a> <a href="http://www.google-analytics.com" rel="nofollow">http://www.google-analytics.com</a> <a href="http://cdn.crowdin.com" rel="nofollow">http://cdn.crowdin.com</a> <a href="https://crowdin.com" rel="nofollow">https://crowdin.com</a> <a href="http://stun.l.google.com" rel="nofollow">http://stun.l.google.com</a> *.sentry-cdn.com https://*.fullstory.com <a href="https://www.googletagmanager.com" rel="nofollow">https://www.googletagmanager.com</a> https://*.refiner.io https://*.maze.co". Either the 'unsafe-inline' keyword, a hash ('sha256-T7lR+ibvQarg3W9mbFJwhc8qOfagddrVEM59s6xPa8M='), or a nonce ('nonce-...') is required to enable inline execution. f.aa @ gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:48 5Mixed Content: The page at '&lt;URL&gt;' was loaded over HTTPS, but requested an insecure element '&lt;URL&gt;'. This request was automatically upgraded to HTTPS, For more information see &lt;URL&gt; EA9_Gypsy_Wagon_dar-c.png:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: net::ERR_NAME_NOT_RESOLVED vtt.bundle.js:35602 Final page load. vtt.bundle.js:35643 Including compendium template css. sheetsandboxworker.js:720 Starting up WEB WORKER VM4:4 Roll20 Environment: Web sheetsandboxworker.js:720 Starting up WEB WORKER sheetsandboxworker.js:720 Starting up WEB WORKER VM4:209 Roll20 Kingmaker Module log| kScaffold Loaded vtt.bundle.js:35570 Auth'ed. vtt.bundle.js:35570 Go post auth! gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:495 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-eval' 'nonce-6SltcXmaTcJv5ocO' 'nonce-QLYjFpudci22A2kE' <a href="https://cdn.roll20.net" rel="nofollow">https://cdn.roll20.net</a> blob: <a href="https://www.datadoghq-browser-agent.com" rel="nofollow">https://www.datadoghq-browser-agent.com</a> <a href="http://cdn.inspectlet.com" rel="nofollow">http://cdn.inspectlet.com</a> https://*.googlesyndication.com https://*.doubleclick.net <a href="https://partner.googleadservices.com" rel="nofollow">https://partner.googleadservices.com</a> <a href="https://www.googletagservices.com" rel="nofollow">https://www.googletagservices.com</a> <a href="https://ssl.google-analytics.com" rel="nofollow">https://ssl.google-analytics.com</a> <a href="https://www.google-analytics.com" rel="nofollow">https://www.google-analytics.com</a> <a href="https://ajax.googleapis.com" rel="nofollow">https://ajax.googleapis.com</a> <a href="http://ajax.googleapis.com" rel="nofollow">http://ajax.googleapis.com</a> <a href="https://d3clqjduf2gvxg.cloudfront.net" rel="nofollow">https://d3clqjduf2gvxg.cloudfront.net</a> <a href="https://cdn.firebase.com" rel="nofollow">https://cdn.firebase.com</a> https://*.firebaseio.com https://*.tokbox.com https://*.opentok.com <a href="http://static.opentok.com" rel="nofollow">http://static.opentok.com</a> <a href="http://www.google-analytics.com" rel="nofollow">http://www.google-analytics.com</a> <a href="http://cdn.crowdin.com" rel="nofollow">http://cdn.crowdin.com</a> <a href="https://crowdin.com" rel="nofollow">https://crowdin.com</a> <a href="http://stun.l.google.com" rel="nofollow">http://stun.l.google.com</a> *.sentry-cdn.com https://*.fullstory.com <a href="https://www.googletagmanager.com" rel="nofollow">https://www.googletagmanager.com</a> https://*.refiner.io https://*.maze.co". Either the 'unsafe-inline' keyword, a hash ('sha256-dRVqPgR0ZEi03ttZT5ILLUf2+RuoVUJoA0ha50NfINU='), or a nonce ('nonce-...') is required to enable inline execution. (anonymous) @ gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:495 gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:495 Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self' 'unsafe-eval' 'nonce-6SltcXmaTcJv5ocO' 'nonce-QLYjFpudci22A2kE' <a href="https://cdn.roll20.net" rel="nofollow">https://cdn.roll20.net</a> blob: <a href="https://www.datadoghq-browser-agent.com" rel="nofollow">https://www.datadoghq-browser-agent.com</a> <a href="http://cdn.inspectlet.com" rel="nofollow">http://cdn.inspectlet.com</a> https://*.googlesyndication.com https://*.doubleclick.net <a href="https://partner.googleadservices.com" rel="nofollow">https://partner.googleadservices.com</a> <a href="https://www.googletagservices.com" rel="nofollow">https://www.googletagservices.com</a> <a href="https://ssl.google-analytics.com" rel="nofollow">https://ssl.google-analytics.com</a> <a href="https://www.google-analytics.com" rel="nofollow">https://www.google-analytics.com</a> <a href="https://ajax.googleapis.com" rel="nofollow">https://ajax.googleapis.com</a> <a href="http://ajax.googleapis.com" rel="nofollow">http://ajax.googleapis.com</a> <a href="https://d3clqjduf2gvxg.cloudfront.net" rel="nofollow">https://d3clqjduf2gvxg.cloudfront.net</a> <a href="https://cdn.firebase.com" rel="nofollow">https://cdn.firebase.com</a> https://*.firebaseio.com https://*.tokbox.com https://*.opentok.com <a href="http://static.opentok.com" rel="nofollow">http://static.opentok.com</a> <a href="http://www.google-analytics.com" rel="nofollow">http://www.google-analytics.com</a> <a href="http://cdn.crowdin.com" rel="nofollow">http://cdn.crowdin.com</a> <a href="https://crowdin.com" rel="nofollow">https://crowdin.com</a> <a href="http://stun.l.google.com" rel="nofollow">http://stun.l.google.com</a> *.sentry-cdn.com https://*.fullstory.com <a href="https://www.googletagmanager.com" rel="nofollow">https://www.googletagmanager.com</a> https://*.refiner.io https://*.maze.co". Either the 'unsafe-inline' keyword, a hash ('sha256-VussMEcsqEPalla4i7RvpHqvRE4+2WmSh4DL2kBzaD4='), or a nonce ('nonce-...') is required to enable inline execution. (anonymous) @ gtm.js?id=GTM-MKL9HM6&amp;gtm_auth=RyNPjkDTh-LgK4oo5gJi6A&amp;gtm_preview=env-1&amp;gtm_cookies_win=x:495 vtt.bundle.js:35570 initial setup vtt.bundle.js:35570 joining game... vtt.bundle.js:20006 Player -Mhvln7qLbCeNyT0mHma is offline... vtt.bundle.js:20006 Player -MhvscssMANieDQnMV2V is offline... vtt.bundle.js:20006 Player -MhwnB9Y7RZjwaFCO5BC is offline... vtt.bundle.js:20006 Player -Mi_9ZOnrFPbv0PmCX-2 is offline... vtt.bundle.js:20006 Player -Mia8AF--3JpH81kdUvK is offline... vtt.bundle.js:20006 Player -Mw3gAYWhlpTRXcrYUav is offline... vtt.bundle.js:20006 Player -NDx4zxcy3jEvlR64DIG is offline... vtt.bundle.js:20006 Player -NMpXbQ6VNhv5rhsj_TW is offline... vtt.bundle.js:35570 Deferred finish joining... vtt.bundle.js:35536 Firebase Online vtt.bundle.js:35570 We have 88 pages vtt.bundle.js:20558 Joined channel 'campaign:11403434' successfully Object thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) app.roll20.net/:1 Access to image at '<a href="https://imgsrv.roll20.net/?src=http%3A//www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png&amp;cb=5" rel="nofollow">https://imgsrv.roll20.net/?src=http%3A//www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png&amp;cb=5</a>' from origin '<a href="https://app.roll20.net" rel="nofollow">https://app.roll20.net</a>' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. imgsrv.roll20.net/?src=http%3A//<a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png&amp;cb=5:1" rel="nofollow">www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png&amp;cb=5:1</a>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: net::ERR_FAILED 4vtt.bundle.js:35536 Error loading graphic, probably due to CORS. Trying once without CORS for <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png" rel="nofollow">http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png</a> y @ vtt.bundle.js:35536 <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917394:1" rel="nofollow">www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917394:1</a>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: net::ERR_NAME_NOT_RESOLVED datadog-rum.js:1 Second load attempt failed for <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917394" rel="nofollow">http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917394</a> (anonymous) @ datadog-rum.js:1 <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917395:1" rel="nofollow">www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917395:1</a>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: net::ERR_NAME_NOT_RESOLVED <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917396:1" rel="nofollow">www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917396:1</a>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: net::ERR_NAME_NOT_RESOLVED <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917397:1" rel="nofollow">www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917397:1</a>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: net::ERR_NAME_NOT_RESOLVED datadog-rum.js:1 Second load attempt failed for <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917395" rel="nofollow">http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917395</a> (anonymous) @ datadog-rum.js:1 datadog-rum.js:1 Second load attempt failed for <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917396" rel="nofollow">http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917396</a> (anonymous) @ datadog-rum.js:1 datadog-rum.js:1 Second load attempt failed for <a href="http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917397" rel="nofollow">http://www.dunjinni.com/forums/uploads/Bogie/Z82_Torch_fire5a_sc_bg.png?1675343917397</a> (anonymous) @ datadog-rum.js:1 thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) thumb.webp:1&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Failed to load resource: the server responded with a status of 403 (Forbidden) 4vtt.bundle.js:35567 Debounced init page!

Ah, so the Bot Prevention protocol you just installed is overzealous.&nbsp; So instead of using monitoring systems, or even the most basic 2FA, Roll20 has decided to handle Spam Bots through White/Black lists.&nbsp; An interesting choice for security to say the least.&nbsp; This is concerning for anyone outside of the US.&nbsp;