Join GitHub today
UserVoice Widget causing errors due to CSP #141
Getting the following error in the console when loading the options page:
I'm pretty sure changing the CSP in the manifest to the following should do the trick:
"script-src 'self' https://ssl.google-analytics.com https://*.uservoice.com; object-src 'self'"
This will need testing. It's not urgent as it's not currently affecting other functionality on the page (yet).
Also, it seems that UserVoice has changed their widget system. This will require some additional changes and should be done soon so we don't lose feedback support. Even though they are currently still supporting their old system, it's unlikely they will forever.
added a commit
Apr 22, 2013
It appears this has not been fully resolved. For some reason, it works sometimes but not others. I'm hoping that adding