InformAction Forums

Hey been using NoScript for like a year and a half now great App. i have a question regarding the use of NoScript and visiting Dropbox website, issue is that i cant login or click on anything for that site, how i can make the App work for just that website to make it work, other then completely disabling NoScript, i haven't had any luck other then that option. Thanks you guys for taking the time to look at my post

If "Allow Scripts Globally (dangerous)" gets it working, it's should be a matter of trial and error. You will probably need dropbox.com, dropboxusercontent.com, and (IIRC that this domain exists & is part of dropbox) dropboxstatic.com Allowed.
See what turns up in the menu, if you need some help assessing what's worth trying to Allow, try this method: viewtopic.php?p=75314#p75314

If Allow Scripts Globally does *not* get it working, please check the Browser Console (Ctrl-Shift-J) when this issue happens and post here any messages related to NoScript.
(related messages usually start with either "[NoScript" or "[ABE]"; if you don't know what's related, turn off CSS warnings and post everything else you see)


If you need further help, please post a sample dropbox URL where you see the problem, and give a specific example of something that doesn't work with NoScript enabled and explain what is the expected behavior.

https://www.dropbox.com/
https://www.dropbox.com/#
https://www.dropbox.com/login?cont=http ... com%2Fhome

Expected behavior is being able to sign in clicking on the sign in #reference (top right corner) tested this on a new profile installing just noscript with out changing anything and as expected cant click on the sign-in text. did most of the usual checks like allowing all of the dropbox related domain and tried allowing scripts globally, nothing works.
Works fine with IE and chrome.

@jerichojake: Are you the OP?

Clicking on your second link, then clicking "Sign In" makes the browser hang a bit then this message is in the console: Nothing else related AFAICT.

Not sure what's next. I'll look into this more later.

barbaz wrote:@jerichojake: Are you the OP?

Actually I was able to confirm it's the same poster. Please let us know which of the two accounts you would like to use. I know you're not doing anything wrong but we don't let people keep sock puppets.
If no response within 48 hours then we will assume you want to keep "jerichojake".

Whichever you choose, we will make sure that all of your posts as a registered user are consolidated into the single account you prefer.

jerichojake wrote:Expected behavior is being able to sign in clicking on the sign in #reference (top right corner) tested this on a new profile installing just noscript with out changing anything and as expected cant click on the sign-in text. did most of the usual checks like allowing all of the dropbox related domain and tried allowing scripts globally, nothing works.
Works fine with IE and chrome.

Even more confusing is that I get a completely different page in a clean profile with only NoScript installed
This "new" page does not contain the login link in the upper right.
Tried changing UA string to yours to no effect...

Until we can figure out why Dropbox served me two very different pages, I can't investigate further myself, sorry.

SOOOO sorry for the confusion i would like to keep this account *Jerichojakejj*
i had issues remembering the email associated with this one so i made another similar to keep my thread, you can disregard the new account im fine with that.

What other site did you run into?

so what happens when i click the sign in option(topright) for the same site https://www.dropbox.com/ it adds a ( # ) to the end of the url , just noticed this.
" https://www.dropbox.com/# " FWIW
there's a bunch of different ways to get to sign in/login pages i guess all of them i find on google. Here is another one https://www.dropbox.com/login and https://www.dropbox.com/chooser but the sign in button is grayed out for both the "or email me a link to sign in" will not let me click it too, there was one time when NoScript gave me a cloudfront domain ( dt8kf6553cww8.cloudfront.net ) allowed that then i was able to get on but now its no longer present noticed that change in December of last year. I have tested this with older a version of Firefox 43.0.4 clean profile only NoScript installed nothing changed same issues.

this was on google too??? really...cmon dropbox whats up? https://www.dropbox.com/login?cont=http ... m%2Fcoupon

Found this if its relevant https://steamcommunity.com/app/435060/d ... 880122762/


to add JUST now i did a inspect element of the the sign in button and found it to be disabled so i just enabled it , it changed back to normal i then entered in my login info and signed in but I was redirected to a 403 page instantly hehehe

Jerichojakejj wrote:SOOOO sorry for the confusion i would like to keep this account *Jerichojakejj*
i had issues remembering the email associated with this one so i made another similar to keep my thread, you can disregard the new account im fine with that.

That's OK, it's should be fixed that way now I'll ask Giorgio to delete the other account when he has time (that way you can again use the "second" email address here if needed for whatever reason)

Jerichojakejj wrote:What other site did you run into?

Using your dropbox.com/# link

Screenshot of what I think you see (and where I can reproduce the problem): [deleted]
Screenshot of what I get at the same link in my testing environment, where I'd be investigating the problem: [deleted]

???

WFM, no issues

https://www.dropbox.com/

Sign in "link": https://www.dropbox.com/#
Sign in dialog pops over, asking for email & password
Click the blue Sign in button, & there you are

+dropboxstatic.com
+ajax.googleapis.com
+dropbox.com


So, create a new, clean Profile
Install only NoScript
Test

@therube:
1) That is the same permissions I had when it didn't work.
2) Which of the two screenshots I posted above is what you saw? (Nothing is broken the second one. It's the first one where the "Sign in" link in the upper right did nothing.)

OK got it - clicking the sign-in link was working but uBlock Origin was hiding the sign-in that comes up. Disabling cosmetic filtering completely on dropbox and it works for me (but whitelisting it via @@||dropbox.com^$elemhide didn't help at all? apparently I'm still too new to uBlock Origin to understand the difference)

@Jerichojakejj: Are you using an adblocker or other extension that could hide things?

Im using uBlock Origin and NoScript and about a dozen other addons all which wont interfere with the Dropbox website, upon testing these individually with a new profile i find that noscript is the source of the issues on their site, havent found a thread anywhere on the net that describes a way around this issue but i think i can tell that people suggest disabling the addon when going to that site is the only way to use it. Really need to find out whats going on here, i really think that noscript is being blocked natively by dropbox It on purpose otherwise this should be a simple fix of code of the domain controller in noscript possibly something in ABE i used this at one point but no longer works at all

You really think a Mod on a much security-conscious board would post warez? (just kidding)

Jerichojakejj wrote:upon testing these individually with a new profile i find that noscript is the source of the issues on their site,

???
I've never had problems with NS + Dropbox even on my more restrictive main profile. Just to clarify, this is despite whitelisting the needed sites per therube's post, right?

When this issue occurs, do you see anything related in the Browser Console? (Ctrl-Shift-J)
(if you don't know what's related, turn off CSS warnings and post everything else you see)

Jerichojakejj wrote:Really need to find out whats going on here, i really think that noscript is being blocked natively by dropbox It on purpose

Given my experiences I highly doubt that. There is a way to make it work.

Jerichojakejj wrote:ABE i used this at one point but no longer works at all

Your ABE rule as you posted it would has no effect, but anyway looks backwards. The Site is the request destination, and Accept [...] defines request origin.

Anyway not sure what you're trying to achieve exactly.

well im just trrying to login thats all no ill will or intent , so i think its my prefs.js file that has something thats blocking the use of noscript i just tested this AGAIN and i have a new user profile and i have only installed noscript and ublock with the exact same setting and back ups as my default profile AND IT WORKS JUST FINE so right now im going to proceed in migrating to a new userprofile.

II just wonder what changed in my default and prevent that from happening again. Alll this was just today soo

I use Dropbox. The 'Sign in' link was dead until I allowed ajax.googleapis.com. Any chance that something is still blocking that?

The ABE rule looks broken and/or not useful and should probably be commented out.