Reputation: 391
"excludeMatches" array in scripting.registerContentScripts() API is totally ignored in Safari web extensions
In a project to create a web extension for Safari, using scripting.registerContentScript() API to inject a bunch of scripts into web pages, I needed to manage a dynamic whitelist (i.e., web pages where the scripts should not be injected).
Fortunately, scripting.registerContentScripts() gives you the option of defining a list of web pages to be considered as a whitelist, using the excludeMatches parameter in the directive, to represent an array of pages where the script should not be injected.
Here just a sample of what I mean:
const matches = ['*://*/*'];
const excludeMatches = ['*://*.example.com/*'];
const directive = {
id: 'injected-jstest',
js: ['injectedscript.js'],
matches: matches,
excludeMatches: excludeMatches,
persistAcrossSessions: false,
runAt: 'document_start'
};
await chrome.scripting.registerContentScripts([directive])
.catch(reason => { console.log("[SW] >>> inject script error:",reason); });
Of course, the whitelist is not static, but varies over time according to the needs of the moment.
I want to use scripting.registerContentScript() API to inject scripts in browser context and not every time a page is open (page context), which would also involve adding all scripts to be injected in manifest.json web_accessible_resources list.
Everything works perfectly in Chromium browsers (Chrome, Edge, ...) and Firefox, but fails miserably in Safari. In fact, Safari seems to completely ignore the excludeMatches parameter and injects the script even where it should not.
In addition, in Safari the script is injected multiple times into the same page (!!!), which also suggests an underlying problem with scripting.registerContentScript() API, or, even worse, in the management of the extension's service worker.
Has anyone had the same problem and solved it somehow?
NOTE: To test the correctness and capabilities of the API in each browser, I created a simple repository on Github with the extension code for Chromium, Firefox and Safari (XCode project).
EDIT I created a post in Apple Developers Forum about this issue. No answer (as always).
Upvotes: 0
Views: 28
Answers (0)
Related Questions
- Chrome extension content script re-injection after upgrade or install
- how to make Webextension content_scripts load on opened pages after the first?
- Can MacOS Safari Web Extensions issue local notifications without asking for permission twice?
- Resources must be listed in the web_accessible_resources manifest key in order to be loaded by pages outside the extension
- sendMessage not received by options page onMessage in Safari
- How to inject CSS using content script file in Chrome extension?
- window onload event not fired in chrome content script
- Messaging directly from web page in Safari like Chrome
- Curious difference in behavior between Chrome & Safari extensions w/iFrames