Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

Blocked URI : properties #96

Open
Facyla opened this issue Feb 16, 2023 · 2 comments
Open

Blocked URI : properties #96

Facyla opened this issue Feb 16, 2023 · 2 comments

Comments

@Facyla
Copy link

Facyla commented Feb 16, 2023

A new one, on which i haven't found any details yet : the "properties" blocked URI.
It is linked only with the "connect-src" directive, and applies on legit site URLs (standard pages of the website the CSP apply to).
@nico3333fr
Copy link
Owner

Would you have an example?

@Facyla
Copy link
Author

Facyla commented Feb 16, 2023

Sure, here's one of them : apparently this user agent is from a in-app facebook browser

Timestamp 2023-02-16 15:08:53
Blocked URI properties
Violated Directive connect-src
User agent Mozilla/5.0 (Linux; Android 13; SM-A137F Build/TP1A.220624.014; wv) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/109.0.5414.117 Mobile Safari/537.36 [FB_IAB/FB4A;FBAV/401.0.0.24.77;]
Status code 200
Disposition enforce
Source file https://connect.facebook.net/signals/config/xxxxxxxxxxxxxxx
Document URI https://site/produit/PRODUIT/
Referrer https://site/type-de-PRODUIT/TYPE_PRODUIT/
Script sample

# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Facyla @nico3333fr