Reputation: 29557
chrome.browserAction.setIcon() not work with content_security_policy
I have added functionality to my Chrome extension such that the icon button changes color when it is clicked. The code is simple:
chrome.browserAction.setIcon({path:"icon_pink_lines.png", tabId:tab.id});
However, this took me a while to figure out because it turns out that it doesn't work when the content_security_policy is set in manifest.json. I originally had
"content_security_policy": "default-src 'none'; script-src 'self'"
The question is, what, if anything, do I lose by removing this? Or should it just be something else to work with the icon change? To be honest, I just copied the original policy from some sample manifest file and haven't thought about it since.
Upvotes: 1
Views: 2017
Answers (1)
Reputation: 37903
There is a default value for content_security_policy if you don't set it up yourself:
script-src 'self'; object-src 'self'
Yours is tighter though. It does not allow to load any external resources (while default policy does not allow only external scripts). It seems that your icon_pink_linkes.png is treated as an external resource and blocked by CSP. This looks like a bug to me, you can report it here (I've searched for similar bugs, but haven't found any).
Upvotes: 1
Related Questions
- Why am I getting "Failed to load extension. Invalid value for 'content_security_policy'"?
- why is this chrome.browserAction.setIcon method not working?
- Chrome Extension error: “Unchecked runtime.lastError while running browserAction.setIcon: Icon invalid."
- chrome.browserAction.setIcon not doing anything
- content_security_policy not taking effect in Chrome Extension
- Issue With Content Security Policy in Chrome Extension
- chrome is not recognizing my content_security_policy string in my chrome extension
- update a chrome extension: manifest 2 and security policy
- Invalid value for Content Security Policy: Google Chrome Extension
- Calling chrome.browserAction.setIcon from content script the way it is done in background script