I installed greasemonkey and wrote a user script. If the user script is
running on an https:// page and introduces mixed active content, the
content will be blocked as expected. (Ex: user script running on
https://example.com that creates a script element with a source of
http://example.com/script.js). If the script is sourced over https://
instead, then there is no problem and the greasemonkey script functions
as intended.
I then used your window.open example and tried to create a new window
with a greasemonkey script. Firefox displays a popup bar whenever you
try this:
"Firefox prevented this site from opening a pop-up window"
I can click "Preferences" and decide to allow popups from that domain,
edit pop-up blocker preferences, or not show this message when popups
are blocked. Here is a simple example where you should be able to
observer this behavior: http://people.mozilla.com/~tvyas/windowopen.html
This popup blocker is completely separate from the Mixed Content
Blocker. I'm not sure when it was introduced or how long it's been
around for, but I found this support article on it -
https://support.mozilla.org/en-US/kb/pop-blocker-settings-exceptions-troubleshooting
Please clarify if your greasemonkey script is invoking the Mixed Content
Blocker (you would see a shield in the url bar like this -
https://people.mozilla.com/~tvyas/FigureA.jpg). Or if the problem is
with the popup blocker.
Thanks!
~Tanvi
On 8/7/13 7:08 PM, [email protected] wrote:
It's a Greasemonkey script - Greasemonkey is an
extension add-on and it runs these userscripts
locally. Pls Google if unfamiliar with product.
So the user script is stored locally - not loaded
via http or https per se.
Technically since this popup window is a new window
(and not mixed with the existing window) - FF should
not block anything.
I just want to display some dynamically created html
content in a popup window.
Any way to do that.
_______________________________________________
dev-security mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security
_______________________________________________
dev-security mailing list
[email protected]
https://lists.mozilla.org/listinfo/dev-security
