Session Restore - Icon Incorrect, JavaScript Allowed
Session Restore - Icon Incorrect, JavaScript Allowed
Session Restore - Icon Incorrect, JavaScript Allowed
On starting up from Session Restore, Icon displays incorrectly AND JavaScript may be (incorrectly) Allowed.
Set youtube.com to Default
Set FF to restore session on browser startup
Load:
URL: https://www.youtube.com/watch?v=4QAsOziiUzE
URL: https://bugzilla.mozilla.org/show_bug.cgi?id=1415644
Set focus to mozilla.org
Quit
Open FF
Result:
mozilla.org shows as partially allowed, with a 4, domains show, mozilla.org & google-analytics.com, both at defaults
-------
Set focus to youtube.com
Quit
Open FF
Result:
youtube.com shows as partially allowed, with a 2, domains show, youtube.com, gstatic.com, & ytimg.com, youtube.com is Default, the other two are Trusted
AT LEAST ONE TIME, JavaScript was allowed, must have been allowed, as the page displayed normally & the video automatically played.
(Otherwise the page, with youtube.com at Default, JavaScript blocked, is "broken" [as expected], not displaying any pictures... I have not been able to duplicate the JavaScript Allowed issue, or if you want to look at it as JavaScript was not being blocked, but it has happened.)
FF 61, NoScript 10.1.8.9rc1
Oh, in each case, refresh the page & the icon displays correctly.
In the instance, with youtube, where JavaScript (must have been) allowed, I didn't think to refresh the page to see what would happen, but I'll suspect that on refresh, the page would have come up blocked (Default, as set in settings).
On starting up from Session Restore, Icon displays incorrectly AND JavaScript may be (incorrectly) Allowed.
Set youtube.com to Default
Set FF to restore session on browser startup
Load:
URL: https://www.youtube.com/watch?v=4QAsOziiUzE
URL: https://bugzilla.mozilla.org/show_bug.cgi?id=1415644
Set focus to mozilla.org
Quit
Open FF
Result:
mozilla.org shows as partially allowed, with a 4, domains show, mozilla.org & google-analytics.com, both at defaults
-------
Set focus to youtube.com
Quit
Open FF
Result:
youtube.com shows as partially allowed, with a 2, domains show, youtube.com, gstatic.com, & ytimg.com, youtube.com is Default, the other two are Trusted
AT LEAST ONE TIME, JavaScript was allowed, must have been allowed, as the page displayed normally & the video automatically played.
(Otherwise the page, with youtube.com at Default, JavaScript blocked, is "broken" [as expected], not displaying any pictures... I have not been able to duplicate the JavaScript Allowed issue, or if you want to look at it as JavaScript was not being blocked, but it has happened.)
FF 61, NoScript 10.1.8.9rc1
Oh, in each case, refresh the page & the icon displays correctly.
In the instance, with youtube, where JavaScript (must have been) allowed, I didn't think to refresh the page to see what would happen, but I'll suspect that on refresh, the page would have come up blocked (Default, as set in settings).
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 SeaMonkey/2.53 Lightning/5.8
- Giorgio Maone
- Site Admin
- Posts: 9454
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Session Restore - Icon Incorrect, JavaScript Allowed
It sound like this bug not having been actually fixed for good.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0
- Giorgio Maone
- Site Admin
- Posts: 9454
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Session Restore - Icon Incorrect, JavaScript Allowed
v 10.1.8.9rc3
=============================================================
x More reliable handling of edge cases on startup (thanks
therube for reporting)
x Fixed dynamic script injection failing sometimes with
"No matching message handler" error (thanks skriptimaahinen
for reporting)
=============================================================
x More reliable handling of edge cases on startup (thanks
therube for reporting)
x Fixed dynamic script injection failing sometimes with
"No matching message handler" error (thanks skriptimaahinen
for reporting)
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0
Re: Session Restore - Icon Incorrect, JavaScript Allowed
Session Restore - Icon Incorrect
Most cases look to be OK, but...
URL: https://github.com/mozilla/policy-templ ... /README.md
Load URL
Temporarily Allow github.com (actually, this step is not even needed)
Quit
Start FF from Session Restore
Result:
Icon shows github.com as Temporarily Allowed, 1
Dropdown shows github.com as Default
Most cases look to be OK, but...
URL: https://github.com/mozilla/policy-templ ... /README.md
Load URL
Temporarily Allow github.com (actually, this step is not even needed)
Quit
Start FF from Session Restore
Result:
Icon shows github.com as Temporarily Allowed, 1
Dropdown shows github.com as Default
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 SeaMonkey/2.53 Lightning/5.8
Re: Session Restore - Icon Incorrect, JavaScript Allowed
URL: https://www.loomio.org/
Offhand, I don't know if this is 10.1.8.9rc3 specific or not, but loomio.org shows as partially allowed - regardless of all else?
Cannot duplicate in a new Profile.
Is there not some easy way to compare Prefs between Profiles - for extensions, these days?
(I have had the sneaky feeling, for a long time, that "updates" of webextensions simply do not work, correctly.)
And also cannot duplicate the .github issue in a new Profile.
While my Profiles often times are "mules", in this case, my existing Profile I don't think has had much going on in there except for installing various NoScript (it's the only extension in there) & loading websites?
Offhand, I don't know if this is 10.1.8.9rc3 specific or not, but loomio.org shows as partially allowed - regardless of all else?
Cannot duplicate in a new Profile.
Is there not some easy way to compare Prefs between Profiles - for extensions, these days?
(I have had the sneaky feeling, for a long time, that "updates" of webextensions simply do not work, correctly.)
And also cannot duplicate the .github issue in a new Profile.
While my Profiles often times are "mules", in this case, my existing Profile I don't think has had much going on in there except for installing various NoScript (it's the only extension in there) & loading websites?
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 SeaMonkey/2.53 Lightning/5.8
Re: Session Restore - Icon Incorrect, JavaScript Allowed
Existing on the right, new Profile on the Left.
uuid ?
And the second time I've seen § is the space of an hour, https://www.voidtools.com/forum/viewtop ... f=2&t=6985.
So nothing of consequence, that I see, shows there, yet the Profiles definitely act differently.
uuid ?
And the second time I've seen § is the space of an hour, https://www.voidtools.com/forum/viewtop ... f=2&t=6985.
So nothing of consequence, that I see, shows there, yet the Profiles definitely act differently.
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 SeaMonkey/2.53 Lightning/5.8
Re: Session Restore - Icon Incorrect, JavaScript Allowed
HA!
It's the Bookmarks Toolbar.
If you display the Bookmarks Toolbar, you can see the behavior.
(Actually I have both the Menu Bar & Bookmarks Toolbar displaying.
And it is not the first time that I have run into a situation where having the Bookmarks Toolbar display affecting things [in the other case, it was video resolutions displayed, or not, on Youtube].)
It's the Bookmarks Toolbar.
If you display the Bookmarks Toolbar, you can see the behavior.
(Actually I have both the Menu Bar & Bookmarks Toolbar displaying.
And it is not the first time that I have run into a situation where having the Bookmarks Toolbar display affecting things [in the other case, it was video resolutions displayed, or not, on Youtube].)
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:56.0) Gecko/20100101 Firefox/56.0 SeaMonkey/2.53 Lightning/5.8
- Giorgio Maone
- Site Admin
- Posts: 9454
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Session Restore - Icon Incorrect, JavaScript Allowed
This is a really interesting case. It uses Service Workers, which are so heavily cached that once you allow it (even temporarily) it completely bypasses the webRequest API: therefore revoking the permissions doesn't take effect until the service gets deregistered (which might never happen).therube wrote:URL: https://www.loomio.org/
Offhand, I don't know if this is 10.1.8.9rc3 specific or not, but loomio.org shows as partially allowed - regardless of all else?
I'll surely look for a work-around and probably open a bug to have this sorted out: I feel requests handled by service workers should not bypass webRequest, but Mozilla developers might think otherwise.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0
- Giorgio Maone
- Site Admin
- Posts: 9454
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Session Restore - Icon Incorrect, JavaScript Allowed
Temporary work-around (which I'll likely base mine on): use this bookmarklet to deregister service workers on the site:Giorgio Maone wrote:This is a really interesting case. It uses Service Workers, which are so heavily cached that once you allow it (even temporarily) it completely bypasses the webRequest API: therefore revoking the permissions doesn't take effect until the service gets deregistered (which might never happen).therube wrote:URL: https://www.loomio.org/
Offhand, I don't know if this is 10.1.8.9rc3 specific or not, but loomio.org shows as partially allowed - regardless of all else?
I'll surely look for a work-around
Code: Select all
javascript:(async () => { for (let r of await navigator.serviceWorker.getRegistrations()) r.unregister()})()
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0
- Giorgio Maone
- Site Admin
- Posts: 9454
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Session Restore - Icon Incorrect, JavaScript Allowed
[EDIT]Giorgio Maone wrote:Temporary work-around (which I'll likely base mine on): use this bookmarklet to deregister service workers on the site:Giorgio Maone wrote:This is a really interesting case. It uses Service Workers, which are so heavily cached that once you allow it (even temporarily) it completely bypasses the webRequest API: therefore revoking the permissions doesn't take effect until the service gets deregistered (which might never happen).therube wrote:URL: https://www.loomio.org/
Offhand, I don't know if this is 10.1.8.9rc3 specific or not, but loomio.org shows as partially allowed - regardless of all else?
I'll surely look for a work-aroundCode: Select all
javascript:(async () => { for (let r of await navigator.serviceWorker.getRegistrations()) r.unregister()})()
Force refresh (ctrl+F5) will work too, and probably easier to implement.
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0
- Giorgio Maone
- Site Admin
- Posts: 9454
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Session Restore - Icon Incorrect, JavaScript Allowed
Please check latest development build, thanks.
Code: Select all
v 10.1.8.9rc4
=============================================================
x Work-around for serviceWorker loads bypassing webRequest
(thanks therube for reporting)
x More flexible CSS layout for preset buttons (thanks fatboy)
x Improved edge case script disablement detection
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0
Re: Session Restore - Icon Incorrect, JavaScript Allowed
Looks better .
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:52.0) Gecko/20100101 Firefox/52.0 SeaMonkey/2.49.5
-
- Master Bug Buster
- Posts: 244
- Joined: Wed Jan 10, 2018 7:37 am
Re: Session Restore - Icon Incorrect, JavaScript Allowed
Looks like the fix for serviceworkers is removed from 10.1.9rc1, so what is the plan now?
Did you file a bug for this and if so, how did they answer?
Did you file a bug for this and if so, how did they answer?
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:61.0) Gecko/20100101 Firefox/61.0
- Giorgio Maone
- Site Admin
- Posts: 9454
- Joined: Wed Mar 18, 2009 11:22 pm
- Location: Palermo - Italy
- Contact:
Re: Session Restore - Icon Incorrect, JavaScript Allowed
This one.skriptimaahinen wrote:Looks like the fix for serviceworkers is removed from 10.1.9rc1, so what is the plan now?[/url]
Not yet, since I've got a good work-around and tons of other stuff in the pipeline.Did you file a bug for this and if so, how did they answer?
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:61.0) Gecko/20100101 Firefox/61.0