Conflict with Tempermonkey in modifying "Content-Security-Policy"

gorhill / uMatrix

uMatrix: Point and click matrix to filter net requests according to source, destination and type

GNU General Public License v3.0

4.56k stars 472 forks source link

Conflict with Tempermonkey in modifying "Content-Security-Policy" #778

Closed VictorSu000 closed 7 years ago

VictorSu000 commented 7 years ago

uMatrix and Tempermonkey seem to work well so far, but an warning message pops up, which says "During network requests Tempermonkey can't modify "Content-Security-Policy" in response headers, because this modification conflicts with another extension uMatrix."

gorhill commented 7 years ago

Browser limitation, only one extension can modify a HTTP header. You will have to pick which one you want to modify the header. Take note that uMatrix never make a CSP header less strict, it only makes them same or stricter. I believe Tampermonkey can potentially make the CSP header less strict. You will have to seek information with Tampermonkey authors.

uBlock-user commented 7 years ago

@VictorSu000 Open settings and set the settings mode to Advanced mode, scroll down to the end and in Security category somewhere, there's a CSP setting, disable it.

Read - https://github.com/gorhill/uBlock/issues/2074#issuecomment-254169776

If you don't want to do that, then use ViolentMonkey instead of TamperMonkey.