Steps to reproduce
Using a CSP policy such as
frame-src 'self' data: https: ;upgrade-insecure-requests ;block-all-mixed-content
will break links using the “tel” protocol, such as
<a href="tel://1234567">Call us</a>.
These links are loaded as an iframe before the native Windows list of apps is shown.
Workaround for now is to add
tel: to the
Comments and activity
- Microsoft Edge Team
Changed Assigned To to “wwatri”