"new messages" banner appears every time on firefox

[fabioperrella]

Description:

The banner new messages is appearing every time on firefox

Steps to reproduce:

1. open rocketchat in firefox
2. wait the bug happens (I'm not sure what causes it)

Expected behavior:

To not show the banner "new messages" every time.

Actual behavior:

Server Setup Information:

• Version of Rocket.Chat Server: 0.70.4
• Version of firefox: 63.0
• Operating System: Ubuntu 16.04 LTS
• Deployment Method: locaweb.rocket.chat
• Number of Running Instances: ?
• DB Replicaset Oplog: ?
• NodeJS Version: ?
• MongoDB Version: ?

Additional context

It does not happen on chrome.

It started to happen a few days ago.

Relevant logs:

Logs from browser:

Could not write session state file  Error: "_initWorker called too early! Please read the session file from disk first."
    _initWorker resource:///modules/sessionstore/SessionFile.jsm:334:15
    _initWorker resource:///modules/sessionstore/SessionFile.jsm:327:12
    _postToWorker resource:///modules/sessionstore/SessionFile.jsm:351:11
    write resource:///modules/sessionstore/SessionFile.jsm:390:19
    write resource:///modules/sessionstore/SessionFile.jsm:63:12
    _writeState resource:///modules/sessionstore/SessionSaver.jsm:357:12
    _saveState resource:///modules/sessionstore/SessionSaver.jsm:295:12
    _saveStateAsync resource:///modules/sessionstore/SessionSaver.jsm:341:5
    saveStateAsyncWhenIdle resource:///modules/sessionstore/SessionSaver.jsm:192:9
 _initWorker/<@resource:///modules/sessionstore/SessionFile.jsm:334:15
_initWorker@resource:///modules/sessionstore/SessionFile.jsm:327:12
_postToWorker@resource:///modules/sessionstore/SessionFile.jsm:351:11
write@resource:///modules/sessionstore/SessionFile.jsm:390:19
write@resource:///modules/sessionstore/SessionFile.jsm:63:12
_writeState@resource:///modules/sessionstore/SessionSaver.jsm:357:12
_saveState@resource:///modules/sessionstore/SessionSaver.jsm:295:12
_saveStateAsync@resource:///modules/sessionstore/SessionSaver.jsm:341:5
saveStateAsyncWhenIdle@resource:///modules/sessionstore/SessionSaver.jsm:192:9
SessionFile.jsm:405:7
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI3gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIt0AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIw4AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAEzMAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI7kAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI3gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIt0AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAG1gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGvEAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAG1gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGvEAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAKD5AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAJd6AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAKD5AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAJd6AB… (“font-src”).
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIw4AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAEzMAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI7kAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI3gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIt0AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIw4AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAEzMAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI7kAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI3gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIt0AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAG1gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGvEAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAG1gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGvEAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAKD5AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAJd6AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAKD5AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAJd6AB… (“font-src”).
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAEMQAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAAtEAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAEIAAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAAsUAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAEKMAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAAsYAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAEAIAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAAr4AA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAEA0AA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAArQAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAEncAA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GMgABAAAAAA00AA… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGjoAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGbkAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGcsAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGnAAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGpwAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAHMEAB… (“font-src”).
XrayWrapper denied access to property "stringify" (reason: object is not safely Xrayable). See https://developer.mozilla.org/en-US/docs/Xray_vision for more information. Note that only the first denied property access from a given global object will be reported. editor-popup.js:9:29617
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGjoAB… (“font-src”).
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIw4AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAEzMAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI7kAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI3gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIt0AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIw4AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAEzMAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI7kAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI3gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIt0AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAG1gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGvEAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAG1gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGvEAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAKD5AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAJd6AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAKD5AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAJd6AB… (“font-src”).
[Exception... "Component returned failure code: 0x805e0006 [nsIChannel.asyncOpen2]"  nsresult: "0x805e0006 (<unknown>)"  location: "JS frame :: resource:///modules/FaviconLoader.jsm :: load :: line 102"  data: no]
Content Security Policy: The page’s settings blocked the loading of a resource at https://avatars0.githubusercontent.com/favicon.ico (“default-src”).
Loading failed for the <script> with source “resource://onboarding/onboarding-tour-agent.js”. newtab:1:1
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'report-sample'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'report-sample'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'report-sample'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”). 0:274:235
IndexedDB UnknownErr: ActorsParent.cpp:13786
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: Ignoring “'unsafe-inline'” within script-src or style-src: nonce-source or hash-source specified
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: Ignoring “'unsafe-inline'” within script-src or style-src: nonce-source or hash-source specified
Use of Mutation Events is deprecated. Use MutationObserver instead. m=sm:320:32
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
The character encoding of a framed document was not declared. The document may appear different if viewed without the document framing it. hscv
Attempt to set a forbidden header was denied: Connection
1022738457-lcs_client_bin.js:195:386
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://play.google.com/log?format=json&hasfast=true. (Reason: CORS request did not succeed).[Learn More]
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://play.google.com/log?format=json&hasfast=true&u=0&authuser=0. (Reason: CORS request did not succeed).[Learn More]
Blocked loading mixed active content “http://go.pardot.com/l/322681/2017-03-15/4hq/322681/1111/New_LP_Style.css”[Learn More] www.graylog.org
unreachable code after return statement js:83:1787
unreachable code after return statement js:143:462
unreachable code after return statement js:143:506
unreachable code after return statement js:143:462
unreachable code after return statement js:83:1787
unreachable code after return statement js:143:506
Loading failed for the <script> with source “https://www.graylog.org/assets/application-2be2a17dde8eca799fa3a7da1d6cad7020e3fc7760aec4bd6f9a68245471259c.js”. dsb:8:1
Blocked loading mixed active content “http://go.pardot.com/l/322681/2017-03-15/4hq/322681/1111/New_LP_Style.css”[Learn More] www.graylog.org
Loading failed for the <script> with source “https://www.graylog.org/assets/featherlight.min-ff421b585168cc389b96c8c8ae6c92e01f62e6dba804007173270e0ddc7b3562.js”. dsb:11:1
TypeError: document.body is null Grammarly.js:1:701211
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: Ignoring “'unsafe-inline'” within script-src or style-src: nonce-source or hash-source specified
Loading failed for the <script> with source “https://notifications.google.com/_/scs/social-static/_/js/k=boq.NotificationsOgbUi.en.tp5Ljdy2UfQ.O/ck=boq.NotificationsOgbUi.ctlqPeLjXDg.L.F4.O/am=AAAAgAAAAAAQ/rt=j/d=1/exm=_b,_tp/excm=home,_b,_tp/ed=1/rs=AGLTcCMdqvP3MVh_y1QpD2_qYrx9Sb5NqQ/m=wmwg8b”. widget:1:1
Loading failed for the <script> with source “https://notifications.google.com/_/scs/social-static/_/js/k=boq.NotificationsOgbUi.en.tp5Ljdy2UfQ.O/ck=boq.NotificationsOgbUi.ctlqPeLjXDg.L.F4.O/am=AAAAgAAAAAAQ/rt=j/d=1/exm=_b,_tp,wmwg8b/excm=home,_b,_tp/ed=1/rs=AGLTcCMdqvP3MVh_y1QpD2_qYrx9Sb5NqQ/m=OJUrvb”. widget:1:1
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: Ignoring “'unsafe-inline'” within script-src or style-src: nonce-source or hash-source specified
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: Ignoring “'unsafe-inline'” within script-src or style-src: nonce-source or hash-source specified
TypeError: document.body is null Grammarly.js:1:701211
unreachable code after return statement
js:94:180
TypeError: n._iq is undefined jquery.js line 2 > eval:15:12
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
unreachable code after return statement js:94:180
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
An unbalanced tree was written using document.write() causing data from the network to be reparsed. For more information https://developer.mozilla.org/en/Optimizing_Your_Pages_for_Speculative_Parsing auth:24
Content Security Policy: Ignoring “'unsafe-inline'” within script-src or style-src: nonce-source or hash-source specified
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: Ignoring “'unsafe-inline'” within script-src or style-src: nonce-source or hash-source specified
unreachable code after return statement js:94:180
Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://api.amplitude.com/. (Reason: CORS request did not succeed).[Learn More]
Loading failed for the <script> with source “https://connect.facebook.net/signals/config/807966079335508?v=2.8.32&r=stable”. launch:1:1
[Exception... "Favicon at "https://dfjnl57l0uncv.cloudfront.net/favicon.ico" failed to load: Forbidden."  nsresult: "0x80004005 (NS_ERROR_FAILURE)"  location: "JS frame :: resource:///modules/FaviconLoader.jsm :: onStopRequest :: line 154"  data: no]
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIw4AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAEzMAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI7kAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI3gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIt0AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIw4AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAEzMAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI7kAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAI3gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAIt0AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAG1gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGvEAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAG1gAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGvEAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAKD5AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAJd6AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAKD5AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAJd6AB… (“font-src”).
[Exception... "Component returned failure code: 0x805e0006 [nsIChannel.asyncOpen2]"  nsresult: "0x805e0006 (<unknown>)"  location: "JS frame :: resource:///modules/FaviconLoader.jsm :: load :: line 102"  data: no]
Content Security Policy: The page’s settings blocked the loading of a resource at https://avatars3.githubusercontent.com/favicon.ico (“default-src”).
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: Ignoring “'report-sample'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Empty string passed to getElementById().
m=core:378:151
Content Security Policy: Ignoring ‘x-frame-options’ because of ‘frame-ancestors’ directive.
Content Security Policy: Ignoring “'unsafe-inline'” within script-src or style-src: nonce-source or hash-source specified
Attempt to set a forbidden header was denied: Connection
Content Security Policy: Ignoring “'report-sample'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'report-sample'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “'unsafe-inline'” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “https:” within script-src: ‘strict-dynamic’ specified
Content Security Policy: Ignoring “http:” within script-src: ‘strict-dynamic’ specified
Empty string passed to getElementById(). m_js_controller.js:1:7317
TypeError: e is undefined shared_0.js:1:1198
Empty string passed to getElementById(). m_js_controller.js:1:7317
Attempt to set a forbidden header was denied: Connection
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGz8AB… (“font-src”).
Content Security Policy: The page’s settings blocked the loading of a resource at data:font/woff;base64,d09GRgABAAAAAGVUAB… (“font-src”).
Loading failed for the <script> with source “https://certify-js.alexametrics.com/atrk.js”. reporting-issues:1:1

[reetp]

Which version of Firefox. Do you have any add ons installed. Why are you getting Content Security Policy issues?

[fabioperrella]

@reetp the version of Firefox is 63.0

I've tried to disable all extensions but the problem still happens.

I don't know why I'm having this "Content Security Policy" issues, I've just copied the log from the browser console.

Is there anything else I can do to help the debugging?

[reetp]

Yup. See Content Security Policy here https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP Tell us about your webserver/ proxy.

[fabioperrella]

@reetp the problem happened again and I have no warnings or errors in my browser console.

I'm not using a proxy.

The company I work is using the saas version of Rocketchat (locaweb.rocket.chat), I'm not sure if it answers the question about the webserver.

[reetp]

I'm not sure but my guess is Firefox has some policies installed that block stuff. Can you try it in safe mode AND with a clean empty profile please

[reetp]

@rocket-cat close

Closing for lack of information