diff options
author | jahoti <jahoti@tilde.team> | 2021-07-22 00:00:00 +0000 |
---|---|---|
committer | jahoti <jahoti@tilde.team> | 2021-07-22 00:00:00 +0000 |
commit | 77139a6f8a27e49788723396dcf46d92b4cccecd (patch) | |
tree | f13703c0e7d5287722a582a1ebb0f3af0bd170af | |
parent | 57b80d7244eeec3dcdb1bdfd0dc905657c5e8b86 (diff) | |
download | browser-extension-77139a6f8a27e49788723396dcf46d92b4cccecd.tar.gz browser-extension-77139a6f8a27e49788723396dcf46d92b4cccecd.zip |
Fix some bugs in the refined CSP handling
-rw-r--r-- | background/policy_injector.js | 6 | ||||
-rw-r--r-- | common/misc.js | 2 |
2 files changed, 4 insertions, 4 deletions
diff --git a/background/policy_injector.js b/background/policy_injector.js index a67b4e3..90c65bd 100644 --- a/background/policy_injector.js +++ b/background/policy_injector.js @@ -108,7 +108,7 @@ function headers_inject(details) delete csp['report-to']; delete csp['report-uri']; - if (!target.policy.allow) { + if (!targets.policy.allow) { delete csp['script-src']; delete csp['script-src-elem']; csp['script-src-attr'] = ["'none'"]; @@ -118,12 +118,12 @@ function headers_inject(details) if ('script-src' in csp) csp['script-src'].push(rule); else - csp['script-src'] = rule; + csp['script-src'] = [rule]; if ('script-src-elem' in csp) csp['script-src-elem'].push(rule); else - csp['script-src-elem'] = rule; + csp['script-src-elem'] = [rule]; /* TODO: is this safe */ let new_policy = Object.entries(csp).map( diff --git a/common/misc.js b/common/misc.js index 6af2327..0d8466e 100644 --- a/common/misc.js +++ b/common/misc.js @@ -159,7 +159,7 @@ function parse_csp(csp) { let directive, directive_array; let directives = {}; for (directive of csp.split(';')) { - directive = directive.trim; + directive = directive.trim(); if (directive === '') continue; |