Closed Bug 1389874 Opened 6 years ago Closed 5 years ago

Inject command in gcli blocked by CSP

Categories

(DevTools Graveyard :: Graphic Commandline and Toolbar, defect, P3)

Product:
DevTools Graveyard
Component:
Graphic Commandline and Toolbar
Type:
defect

Tracking

(firefox57 fix-optional)

Status:
RESOLVED INCOMPLETE
Tracking Flags:
Tracking Status
firefox57 --- fix-optional

People

(Reporter: marsjaninzmarsa, Unassigned)

References

(Blocks 1 open bug)

Details

As reported originally in bug 1145899, script injection via gcli not working, when target domain isn't included in site CSP.

Steps to reproduce:
1. Open GitHub or any other page with strict CSP
2. Open Developer Toolbar (Shift + F2)
3. Type `inject jQuery` and confirm pressing Enter

Actual results:
Script injection blocked by browser, displayed error describing CSP violation.

Expected results:
CSP overrode and jQuery injected.
Blocks: CSP
Depends on: 970790
See Also: → 866522, 615708
Blocks: 1016578
See Also: → 1267027
status-firefox57: --- → fix-optional
Priority: -- → P3
Status: UNCONFIRMED → NEW
Has STR: --- → yes
Ever confirmed: true
See Also: → 1397414
URL: Bug 1376949
See Also: → csp-modification-via-webextension
URL: Bug 1376949
Product: Firefox → DevTools
Per bug 1491875, this component has been closed, and the affected code is being removed from Firefox. Closing this bug as incomplete.
Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → INCOMPLETE
Product: DevTools → DevTools Graveyard
You need to log in before you can comment on or make changes to this bug.