You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Some bad news: In Firefox, extensions do not use their ID in the extension URL, they use an installation-unique extension UUID (apparently to prevent fingerprinting).
This means we have to use a moz-extension://* origin for Firefox users, this is not ideal as it would let any Firefox extension access the ActivityWatch database.
Seems we have yet another reason to start working on a proper authentication flow.
rocket_cors now support regex in the origin configuration, we should use that to implement CORS safely. Maybe also add support for custom origin configurations in the config?
The text was updated successfully, but these errors were encountered: