search

classilla / tenfourfox

Mozilla for Power Macintosh.
http://www.tenfourfox.com/
Other
273 stars 41 forks source link

OpenBMC works fine in TenFourFox with CSP off #602

Closed classilla closed 4 years ago

classilla commented 4 years ago

It seems to be the self issue.

classilla commented 4 years ago

security.csp.experimentalEnabled doesn't fix anything.

classilla commented 4 years ago 
Content Security Policy: The page's settings blocked the loading of a resource at about:blank ("base-uri https://tim-bmc"). <unknown>
Content Security Policy: The page's settings blocked the loading of a resource at self ("default-src https://tim-bmc"). tim-bmc:1:0
Content Security Policy: The page's settings blocked the loading of a resource at self ("style-src https://tim-bmc"). tim-bmc:1:0
Content Security Policy: The page's settings blocked the loading of a resource at wss://tim-bmc/subscribe ("default-src https://tim-bmc"). <unknown>
classilla commented 4 years ago

There were two distinct issues: self was not being handled properly for inline resources, and wss:// needed to be special-cased. This works now.