You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
how my browser know that this query should connect to the urlOfMyCodeServer because the urlOfMyCodeServer.vscode-resource.vscode-cdn.net do not exist from my knowledge.
by the way, i am trying to add a Content-Security-Policy more restrictive for security purpose, this kind of url force connect-src to specify the domain .vscode-resource.vscode-cdn.net is there a way to change this behaviour or should i live with this domain open even if i understard that the url return a javascirpt file not on internet but within codeserver
The text was updated successfully, but these errors were encountered:
the url is fake also i think but firefox send this http request and with a more restricted csp the query is blocked.
I don't understand how the query http is really sent/routed to the code-server maybe this is related to WebView technology but i am not sure and need to dig more to understand
Yeah I think iframes + service worker is meant to emulate Electron's webviews, but I am not familiar with Electron or webviews very much so I am not able to infer more.
But, I can point you to where the service worker intercepts HTTP requests:
What is your suggestion?
I have identified some http request in the browser like this one :
https://vscode-remote+urlOfMyCodeServer.vscode-resource.vscode-cdn.net/some/path/to/extensions/ms-toolsai.jupyter-renderers-1.0.17-universal/out/client_renderer/builtinRendererHooks.js
The use case is the jypyter extension of vscode.
How will this improve the docs?
I have two questions:
The text was updated successfully, but these errors were encountered: