search

Lartsch / FediAct

Chrome/Firefox extension that simplifies interactions on other Mastodon instances than your own.
MIT License
459 stars 15 forks source link

FediAct breaks common credit union banking software #63

Open tedivm opened 1 year ago

tedivm commented 1 year ago

For some reason this extension breaks all usage of the Alkami software, which is used by tons of banks and credit unions. For some reason after login it redirects people to api/v1/instance despite Alkami not existing. I don't know why it redirects to that endpoint either, as that just seems weird.

Pokefan5 commented 1 year ago

From what I can see more than just Alkami software is affected. The login on login.ionos.de, also breaks.

My assumption is that the extra request on every load of any page breaks the login flow on the server side.

With some tinkering and "remembering" if a website is a mastodon instance or not this could be avoided and we could save unneeded requests to actual instances too.

https://github.com/Lartsch/FediAct/blob/75cd8bb25a50fa75195e46a9409c9bd7cb2e96e7/src/inject.js#L1501-L1507

As a temporary workaround, add the EXACT domain (so for my example "login.ionos.de") to the blacklist.