Cross-Origin Request Blocked: https://lycheeorg.github.io/update.json #121
Comments
|
Seems to be limited to Firefox (NB: Mozilla's help is awful). I don't think it's CSP, but that might be a factor. Edit to add: Doesn't happen on FF 52 ESR either |
|
It appears to be an addon issue - clean FF 63.0.1 profile doesn't experience this error. |
|
Confirmed playing with my main profile - I suspect the culprit is incorrect/incomplete NoScript configuration for the site. |
|
This may be a dumb question, but I only see the CORS error if I'm testing from Could it be related to this CORS issue in Chrome and Firefox, specifically when |
|
It is/was a problem with a filter from the plugin uBlock Origin. It is not a bug in Lychee. Sorry for the noise. |
|
Did you figure out which filter? I wonder whether we could work around it, or at least warn users/administrators in the FAQ. |
|
The problematic rule is: from "FRA: EasyList Liste FR" list. I added my website in the uBlock white list and problem solved. |
Detailed description of the problem
When I display the login dialog I get in the Firefox console:
I guess the Content-Security-Policy provided in https://github.com/LycheeOrg/Lychee/blob/master/.htaccess is missing something.
If I dump the headers using
curl -DI get:Steps to reproduce the issue
Output of the diagnostics (Settings => Diagnostics)
Diagnostics
Warning: Dropbox import not working. No property for dropboxKey.
Warning: You may experience problems when uploading a large amount of photos. Take a look in the FAQ for details.
No critical problems found. Lychee should work without problems!
System Information
Lychee Version (json): 3.2.5
DB Version: update_030205
System: Linux
PHP Version: 7
MySQL Version: 50505
Imagick: 1
Imagick Active: 1
Imagick Version: 1687
GD Version: 2.2.4
Plugins:
Browser and system
Firefox 63.0.3 on macOS Mojave (10.14.1)
I do NOT have the problem with Safari 12.0.1 on the same system.
The text was updated successfully, but these errors were encountered: