• Categories
  • Recent
Collapse

Cannot select "visit website" link when visiting local dev certificate websites

Scheduled Pinned Locked Moved Minim
12 Posts 2 Posters 107 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • N Offline
    N Offline
    NickC
    wrote on last edited by NickC
    #1

    When visiting a locally (network) hosted website using a secure connection (HTTPS) and Minim is set to block JS, the Safari page doesn't allow the user to click the necessary "I understand the risks and want to visit this website" link. The user has to temporarily disable Minim in order to accept the Safari warning and then re-enable it.

    Could there be an exception made for Safari's own pages?

    Currently there's no way for the user to add such an exception as the URL bar is empty (internal Safari page?).

    [Info] Content blocker prevented frame displaying safari-web-extension://43EBD46F-E430-4642-88EA-8F0344484E50/dist/entry-page.html from loading a resource from safari-web-extension://43EBD46F-E430-4642-88EA-8F0344484E50/dist/assets/page-cab3406c.js
    

    ^^^ safari-web-extension pages cannot be added to Minim through the UI.

    Also, extensions like Userscripts (GitHub) won't work since they display a page that is also Safari internal and require Minim to be disable for the user to edit/create new css/script files .

    1 Reply Last reply
    0
  • N Offline
    N Offline
    NickC
    wrote on last edited by
    #2

    With JS disabled, the Safari page below gets blocked preventing certificate to be viewed/accepted.

    [Info] Content blocker prevented frame displaying safari-resource:/CertificateWarning.html from loading a resource from safari-resource:/Utilities.js
    
    1 Reply Last reply
    0
  • SweetPS Offline
    SweetPS Offline
    SweetP
    wrote on last edited by SweetP
    #3

    @NickC can you let me know if this build fixes the issue:
    https://send.tresorit.com/a#lvBv4DXzDCd0X4cwebzdSw

    ~
    Russell
    SweetPProductions.com

    1 Reply Last reply
    1
  • N Offline
    N Offline
    NickC
    wrote on last edited by NickC
    #4

    Hmm, doesn't seem to be working yet.
    Just to be sure I understood, the expected behavior is for Minim to not block (internal whitelist) the "safari-resources" and "safari-web-extensions" pages, right?
    I tested it with the default settings of JS blocked in Minim, both for 1st and 3rd party. Obviously, if I disable it it works...but I cannot set an exception for these pages manually as the "+" button won't work with these pages since the URL is hidden in the bar.

    Screenshot 2023-04-22 at 11.31.56 AM.png

    1 Reply Last reply
    0
  • SweetPS Offline
    SweetPS Offline
    SweetP
    wrote on last edited by
    #5

    Yeah I added an internal whitelist for “safari-resources" and "safari-web-extensions” but I guess it didn’t work…

    How exactly can I test this
    You are accessing a particular page for a Safari extension, is that right?

    I’ll have another look at this when I’m home later and see what else is possible.

    ~
    Russell
    SweetPProductions.com

    N 1 Reply Last reply
    1
  • N Offline
    N Offline
    NickC
    replied to SweetP on last edited by
    #6

    @SweetP 1. For the safari-web-extensions page I use a open source app from the store called Userscripts. Once installed the safari extension has a “open extension settings” link that once clicked goes to the editor for userscripts. This editor doesn’t load properly as JS is blocked in Minim.

    1. For the safari-resource page, any website that doesn’t have a valid certificate would trigger that page—I use a local dev server or my local router’s https page that is signed with a local certificate.
    1 Reply Last reply
    0
  • SweetPS Offline
    SweetPS Offline
    SweetP
    wrote on last edited by SweetP
    #7

    Ok thanks,
    I’ll do some testing later today
    🙂

    ~
    Russell
    SweetPProductions.com

    1 Reply Last reply
    1
  • SweetPS Offline
    SweetPS Offline
    SweetP
    wrote on last edited by SweetP
    #8

    @NickC this version should work:
    https://send.tresorit.com/a#7YCrpIpD8dPhgk4fmbFOYA

    ~
    Russell
    SweetPProductions.com

    N 1 Reply Last reply
    1
  • N Offline
    N Offline
    NickC
    replied to SweetP on last edited by NickC
    #9

    @SweetP Indeed it does. Awesome sauce! 🎯 💥 👏

    1 Reply Last reply
    0
  • SweetPS Offline
    SweetPS Offline
    SweetP
    wrote on last edited by
    #10

    nice one
    Ill release it as v4.0.5

    thanks for your help
    🙂

    ~
    Russell
    SweetPProductions.com

    N 1 Reply Last reply
    0
  • N Offline
    N Offline
    NickC
    replied to SweetP on last edited by
    #11

    @SweetP Thank you for the awesome work and responsiveness! Have a great day onwards! 🙂

    1 Reply Last reply
    0
  • SweetPS Offline
    SweetPS Offline
    SweetP
    wrote on last edited by
    #12

    @NickC thanks for the intro to Userscripts what a great extension

    ~
    Russell
    SweetPProductions.com

    1 Reply Last reply
    1

  • Login

  • Don't have an account? Register

  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Login

  • Don't have an account? Register

  • Login or register to search.