Closed Bug 1366467 Opened 3 years ago Closed 3 years ago

There should be a way to use "insertCSS" or to inject JS on pages with CSP

Tracking

(Not tracked)

Status:

RESOLVED DUPLICATE of bug 1267027

People

(Reporter: Manuel.Spam, Unassigned)

Details

Manuel Reimer

Reporter

Description

•

3 years ago

Currently on pages with CSP headers it is impossible to do some (maybe even all) modifications on websites.

This actually allows websites to block the Addon API completely. Maybe this even limits what Adblockers or Addons like "Stylish" can do to "fix" broken websites.

If more and more websites implement this feature (which would be a good idea for nearly every website), then the Addon API would get more and more useless.

There should be a way to give Addons, which are verified and signed by Mozilla, access to CSP protected sites! So please provide some way for Addons to have full access to all websites. Maybe create a new permission for this. "This Addon can modify protected websites" or something like that.

Kris Maglione [:kmag]

Updated

•

3 years ago

Status: NEW → RESOLVED

Closed: 3 years ago

Resolution: --- → DUPLICATE

Duplicate of bug: 1267027

BMO Automation

Updated

•

2 years ago

Product: Toolkit → WebExtensions

You need to log in before you can comment on or make changes to this bug.

Bugzilla

There should be a way to use "insertCSS" or to inject JS on pages with CSP

Categories

(WebExtensions :: General, defect)

Tracking

(Not tracked)

People

(Reporter: Manuel.Spam, Unassigned)

References

Details

Crash Data

Security

(public)

User Story

Description

Updated

Updated