Revision c12b9ee3
Added by koszko about 2 years ago
| content/page_actions.js | ||
|---|---|---|
| 11 | 11 |
* IMPORT browser |
| 12 | 12 |
* IMPORT report_script |
| 13 | 13 |
* IMPORT report_settings |
| 14 |
* IMPORT report_content_type |
|
| 14 | 15 |
* IMPORTS_END |
| 15 | 16 |
*/ |
| 16 | 17 |
|
| 17 | 18 |
let policy_received_callback; |
| 18 |
/* Snapshot url early because document.URL can be changed by other code. */
|
|
| 19 |
/* Snapshot url and content type early; these can be changed by other code. */
|
|
| 19 | 20 |
let url; |
| 21 |
let is_html; |
|
| 20 | 22 |
let port; |
| 21 | 23 |
let loaded = false; |
| 22 | 24 |
let scripts_awaiting = []; |
| ... | ... | |
| 52 | 54 |
|
| 53 | 55 |
function add_script(script_text) |
| 54 | 56 |
{
|
| 57 |
if (!is_html) |
|
| 58 |
return; |
|
| 59 |
|
|
| 55 | 60 |
let script = document.createElement("script");
|
| 56 | 61 |
script.textContent = script_text; |
| 57 | 62 |
script.setAttribute("nonce", nonce);
|
| ... | ... | |
| 64 | 69 |
function handle_page_actions(script_nonce, policy_received_cb) {
|
| 65 | 70 |
policy_received_callback = policy_received_cb; |
| 66 | 71 |
url = document.URL; |
| 72 |
is_html = /html/.test(document.contentType); |
|
| 73 |
report_content_type(document.contentType); |
|
| 67 | 74 |
|
| 68 | 75 |
document.addEventListener("DOMContentLoaded", document_loaded);
|
| 69 | 76 |
port = browser.runtime.connect({name : CONNECTION_TYPE.PAGE_ACTIONS});
|
Also available in: Unified diff
disable payload injection on non-html pages