466533 – Greasemonkey GM_xmlhttpRequest doesn't bypass CORS

Bug 466533 - Greasemonkey GM_xmlhttpRequest doesn't bypass CORS

Summary: Greasemonkey GM_xmlhttpRequest doesn't bypass CORS

Status:	REPORTED

Alias:	None

Product:	Falkon
Classification:	Applications
Component:	extensions (show other bugs)
Version:	22.12.2
Platform:	Other Linux

Importance:	NOR normal
Target Milestone:	---
Assignee:	David Rosca

URL:
Keywords:

Depends on:
Blocks:

Reported:	2023-02-27 15:23 UTC by Schimon Jehudah
Modified:	2023-03-06 08:15 UTC (History)
CC List:	0 users

See Also:
Latest Commit:
Version Fixed In:

Attachments
Switch lines 32/33 to test with the web extension (5.32 KB, text/javascript) 2023-02-27 15:24 UTC, Schimon Jehudah	Details
Current User.JS script from https://openuserjs.org/scripts/sjehuda/FREEdirector (24.92 KB, text/javascript) 2023-03-02 13:40 UTC, Schimon Jehudah	Details
FREEdirector with XHR (25.37 KB, text/javascript) 2023-03-02 13:44 UTC, Schimon Jehudah	Details
Another userscript which I find useful for Falkon https://openuserjs.org/scripts/sjehuda/no-www (3.62 KB, text/javascript) 2023-03-06 08:15 UTC, Schimon Jehudah	Details
View All Add an attachment

Note You need to log in before you can comment on or make changes to this bug.

Description Schimon Jehudah 2023-02-27 15:23:50 UTC

Attached a userscript that has been tested successfully with the Greasemonkey web extension.

Comment 1 Schimon Jehudah 2023-02-27 15:24:55 UTC

Created attachment 156790 [details]
Switch lines 32/33 to test with the web extension

Comment 2 Schimon Jehudah 2023-03-02 13:40:25 UTC

Created attachment 156919 [details]
Current User.JS script from https://openuserjs.org/scripts/sjehuda/FREEdirector

This is a redirection script without XHR for checking status of selected instance

Comment 3 Schimon Jehudah 2023-03-02 13:44:52 UTC

Created attachment 156920 [details]
FREEdirector with XHR

This User.JS script has a response status check using XHR. It works with other userscript managers  but not with Falkon.

> Access to XMLHttpRequest at 'https://anonymousoverflow.esmailelbob.xyz/' from origin 'https://stackoverflow.com' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.

Comment 4 Schimon Jehudah 2023-03-06 08:15:05 UTC

Created attachment 157030 [details]
Another userscript which I find useful for Falkon https://openuserjs.org/scripts/sjehuda/no-www