I'm trying to utilize Google's reCaptcha Enterprise on my website. One recommended way to implement it is to add the following line to the <head> section:
<script type="text/javascript" src="https://www.google.com/recaptcha/enterprise.js?render=<MyRecaptureIDhere>"></script>
When the script loads, I get several errors in DevTools' console (not going into depth about CORS here), which I was able to attribute to uBlock Matrix' default setting of disableCSPReportInjection. Now I ditched uBlock Matrix in favor of uBlock Origin on my browser, since Matrix is 'archived' on GitHub, thus depreciated? - But I probably can't expect all users to not have installed uBlock Matrix, so that might pose a problem.
I tested loading in latest editions of Chrome, Opera and Brave, Firefox and Edge, all clean installs without extensions. The latter two reported error and/or warnings upon loading the 'enterprise.js': Edge: Just one: Tracking Prevention blocked access to storage for <URL>. Firefox: several errors (3x "Content Security Policy" related and 1 other.)
I don't know yet if any of these will break the site as I haven't implemented the assessment yet.
So my question is: How can I implement Google recaptcha Enterprise, such that 1.) there are no new errors or warnings on any major browser and 2.) there are no special requirements regarding extensions a user might have installed?
