Use this tag for questions related to the Cross-Origin-Opener-Policy HTTP header
Questions tagged [cross-origin-opener-policy]
47 questions
21
votes
4 answers
React Error: "SharedArrayBuffer is not defined" in Firefox
I have a React app, created with 'create-react-app' (I also use jsdom NPM package), and for some reason, the application throws an error on load Only in Firefox (works fine in Chrome & Edge).
Here is the error:
ReferenceError: SharedArrayBuffer is…
Or Assayag
- 5,662
- 13
- 57
- 93
17
votes
4 answers
Is there any way to use SharedArrayBuffer on GitHub Pages?
To use SharedArrayBuffer, we have to add two response headers:
Cross-Origin-Opener-Policy: same-origin
Cross-Origin-Embedder-Policy: require-corp
Is there any way to add those headers with GitHub Pages so SharedArrayBuffer will work?
Đức Huỳnh
- 394
- 3
- 17
12
votes
3 answers
Cross-Origin-Opener-Policy policy would block the window.postMessage call error with Sign in with Google
I have implemented Sign in with Google using popup UX mode for a React site hosted on Firebase. I am able to sign in, however, each time I sign in on localhost:3000 or on a deployed version of my site, I get this error:
Cross-Origin-Opener-Policy…
TryingToLearn
- 123
- 1
- 5
7
votes
1 answer
The Cross Origin Opener Policy header has been ignored - DJANGO
Im making a Chatapp project in Django. I implemented channels and websockets to send and receive message and this worked when i tested using two differents windows in the same browser (one of them in incognito mode), but when i try to test it using…
Lithios23
- 73
- 1
- 1
- 5
7
votes
0 answers
Firebase Auth in Cross-Origin-Isolated mode?
I am working on a web app, which runs compute-intensive code using Emscripten's multithreaded WASM and therefore needs SharedArrayBuffers. Those only work if my app is in Cross-Origin-Isolated mode. And to enable that, I have to set the following…
AUser
- 171
- 1
- 7
6
votes
1 answer
Can COOP/COEP headers be set with meta tags (http-equiv)?
Can the Cross-Origin-Embedder-Policy and Cross-Origin-Opener-Policy headers be set with tags, or can they only be set with actual headers? If not, is there a list of headers which can be set with meta tags?
The following example logs…
joe
- 3,752
- 1
- 32
- 41
5
votes
0 answers
New requirements for SharedArrayBuffers on https://example.com/
Today I received an email from Google:
New requirements for SharedArrayBuffers on https://example.com/
Google systems have recently detected that SharedArrayBuffers (SABs)
are used on https://example.com/, but COOP and/or COEP headers are
not…
4532066
- 2,042
- 5
- 21
- 48
4
votes
2 answers
Is it possible to embed a cross-origin-isolated iframe inside a normal page?
(For some people, this question may equal to "if I can't use sharedArrayBuffer in my main site, can I open an iframe and use sharedArrayBuffer inside the iframe?")
So I want to use some wasm with sharedArrayBuffer in my site, but it's impractical to…
ZYinMD
- 3,602
- 1
- 23
- 32
3
votes
1 answer
How to deal with cross-origin issues when serving React files with Express?
I want to have a node backend and a react frontend to run on the same server.
I have express set up like this:
const express = require("express");
const helmet = require("helmet")
const bodyParser = require("body-parser")
const http =…
Juno
- 211
- 5
- 17
3
votes
1 answer
SharedArrayBuffer inside Chrome Extension Sandboxed iFrame
I am trying to use SharedArrayBuffer by setting up a document that is cross-origin isolated. However since it is in a Google Chrome extension and I need WebAssembly, I need to run this inside a sandboxed page.
I have a sandboxed page which is…
Bentley Carr
- 672
- 1
- 8
- 24
3
votes
3 answers
Cross-Origin-Embedder-Policy: how to allow only certain domains?
on a website I have to embed an iframe that requires the following headers on my website, since it needs the SharedArrayBuffer feature:
Cross-Origin-Embedder-Policy: require-corp
Cross-Origin-Opener-Policy: same-origin
Unfortunately, a 3rd party…
skini82
- 396
- 4
- 17
3
votes
1 answer
SharedArrayBuffer error showing up when making cross origin request
We have a local development enviorment (localhost/) that communicates with our development API on a remote server (api-dev.host.com).
After the latest Chrome upgrade, I am getting the following console error when attempting to communicate from…
Yinnon Hadad
- 33
- 4
3
votes
3 answers
Setting Cross-origin-Embedder-Policy and Cross-origin-Opener-Policy headers in nodejs
I've been developping a website using express(NodeJS) for the backend and React for the frontend. I've come accross the issue where my application won't work on Firefox due to this error "ReferenceError: SharedArrayBuffer is not defined".
After…
Baroud
- 31
- 1
- 2
3
votes
0 answers
After upgrading chrome to 83, the browser blocked the response of the server interface
chrome 81
The server is configured with a response header
'Cross-Origin-Opener-Policy':'same-origin',
'Cross-Origin-Embedder-Policy':'require-corp',
No problem with the browser's access to the server's interface
chrome 83
The server is…
shizhouhu
- 31
- 2
2
votes
1 answer
CORP Blocking an Obviously Same-Origin Request with CSP sandbox Set
Imagine a site with two documents: index.html and test.jpg, both located at the root. index.html has the following content.
Scott Colby
- 1,370
- 12
- 25