Kelvin Tan
7ca402147d
add phishing html page, and redirect to bundled page in-window
2018-07-27 00:03:39 +08:00
Kevin Serrano
1d241bef76
Merge branch 'develop' into no-inject-ani-gamer
2018-07-24 12:27:18 -07:00
Dan Finlay
dd9e3587d4
Do not inject on ani.gamer.com.tw
...
Fixes #4799
2018-07-18 15:23:32 -07:00
Dan Finlay
6be6b9ef29
Do not inject on blueskybooking.com
...
Per zendesk 2312.
2018-07-16 15:39:35 -07:00
Dan Finlay
c4ae399577
Add harbourair.com to injection block list
...
This site was getting unexpected results when MetaMask was installed.
https://consensys.zendesk.com/agent/tickets/2312
2018-07-12 14:21:32 -07:00
brunobar79
a8f745f9fe
eslint --fix .
2018-07-02 18:49:33 -04:00
Dan Finlay
764643ed5f
Block gravityforms.com from web3 injection
...
Fixes #3073
2018-06-03 19:38:47 -07:00
simon
22753d96fd
Added trailing comma for eslint
2018-05-18 16:11:46 +02:00
simon
41502cb384
Added adyen.com to blacklisted domains because postMessages are blocking card encryption
2018-05-18 15:43:27 +02:00
Bryce Neal
18a8a21179
Blacklist problematic shopify iFrame
2018-04-30 14:35:47 -07:00
bitpshr
8636f3bae5
Clean up JSDoc for background scripts
2018-04-19 15:14:00 -04:00
bitpshr
c9f83fe8bc
Add JSDoc to various background scripts
2018-04-18 17:02:08 -04:00
Dan Finlay
86693af156
Add webby awards to web3 block list.
2018-04-03 20:33:19 -07:00
kumavis
253abd60fc
build - extension - move js files to toplevel
2018-03-28 21:29:57 -07:00
Saptak Sengupta
6174c00c10
Inject Script: Blacklist domains where not to inject script
...
Put a blacklist domain check where if the page url is in the list
of blacklisted domains, we shouldn't inject script in that web page.
2018-03-17 01:02:08 +05:30
William Chong
03f86acd60
fix #1398 , prevent injecting xml without xml suffix
2017-12-05 19:53:01 +08:00
kumavis
53a360b65d
contentscript - fix inpage require and bundling
2017-10-12 12:51:48 -07:00
Dan Finlay
c9a984a237
Break up inpage file read into multiple lines
2017-10-12 14:16:40 -04:00
Dan Finlay
1cba6543a4
Begin implementing sync injection idea
2017-10-04 15:35:04 -07:00
kumavis
0a5ae39509
bug - fix event emitter mem leak warning
2017-09-21 17:37:30 -07:00
kumavis
8545453a9d
contentscript - fix obj-multiplex instantiation and use pump for streams
2017-09-11 14:30:30 -07:00
kumavis
da16f39626
Merge branch 'master' of github.com:MetaMask/metamask-extension into greenkeeper/initial
2017-08-03 15:05:32 -07:00
kumavis
da7471e095
lint fixes
2017-08-03 14:48:19 -07:00
frankiebee
473b88f399
Reload the page when switching networks for sites that use web3
2017-05-24 23:00:58 -04:00
Thomas Huang
6bdb4c8728
Fix linting warnings
2017-04-26 21:05:45 -07:00
kumavis
be88c87b25
extension - prefer extensionizer module
2017-03-30 18:30:24 -07:00
Kevin Serrano
0625b4a110
Fix injection logic.
2017-03-28 14:30:39 -04:00
Stefaan Ponnet
0faddb2ed2
Allow injection in IFrames + dynamic IFrames
2017-03-26 13:57:44 +02:00
Kevin Serrano
9906da86a4
Modify logic for injection conditions.
2017-03-22 14:25:56 -04:00
Kevin Serrano
23263bec7d
Linting to the max.
2016-11-11 10:26:12 -08:00
Kevin Serrano
0d495372da
Lint.
2016-10-15 15:41:24 -07:00
Kevin Serrano
8a5eacd35f
Prevent XML from web3 injections.
2016-10-15 15:33:49 -07:00
kumavis
a1c3c944cf
dapp reload - fixed disconnect detection via polling
2016-10-12 12:35:55 -07:00
Dan Finlay
6838027c65
Remove bind calls from console errors
2016-08-29 16:49:58 -07:00
kumavis
d7dffedf48
deps - local-message-stream extracted as module post-message-stream
2016-08-11 14:04:20 -07:00
Dan Finlay
be74589f49
Fix extension tests
2016-07-25 17:33:22 -07:00
Dan Finlay
913a9e85bd
Inject inpage script synchronously
...
Huge thanks to the Firefox team, for their help on the issue of our long-standing inpage script race condition.
http://stackoverflow.com/questions/38577656/how-can-i-make-a-firefox-add-on-contentscript-inject-and-run-a-script-before-oth
The problem is that we were injecting a `script` tag and assigning its `src` attribute, which triggers an asynchronous fetch request, and does not guarantee execution order! (That was news to me!)
Instead, I'm now assigning the `script` tag a `textContent` value of the script to inject, and it seems to fix the problem!
There is also a Firefox-only API that could solve this whole problem in an even more elegant way, so we might want to expose a code path for that solution later on:
https://developer.mozilla.org/en-US/docs/Mozilla/Tech/XPCOM/Language_Bindings/Components.utils.exportFunction
Allows you to expose an object from one scope to another. There was even talk of creating a polyfill for it that does virtually what we do, message passing between contexts.
2016-07-25 16:38:07 -07:00
Dan Finlay
b07bbc14e1
Clean up extension polyfill abstraction
2016-07-25 13:46:33 -07:00
Dan Finlay
f3ea891e72
Allow page injection to look for cross-browser APIs appropriately
2016-07-25 13:28:38 -07:00
Dan Finlay
6658bea8d4
Implement some cross-browser practices ( #473 )
...
* Add mozilla plugin key to manifest
* Move all chrome references into platform-checking module
Addresses #453
* Add chrome global back to linter blacklist
* Add tests
2016-07-21 10:45:32 -07:00
kumavis
786a283dd2
contentscript - remove timeout before stream setup
2016-07-06 21:45:15 -07:00
kumavis
5c4c902c94
appease the linting gods
2016-07-06 20:32:36 -07:00
kumavis
7aa120e630
web3 injection - use web3 dist for faster injection
2016-07-06 20:20:40 -07:00
kumavis
d7d440b2c2
svg notif now work for msg signatures
2016-06-24 17:22:27 -07:00
kumavis
fce748c118
contentscript - skip web3 injection if domain appears to be a pdf
2016-06-24 11:21:22 -07:00
Dan Finlay
a08c3bc01b
Auto linted
2016-06-21 13:18:32 -07:00
kumavis
9aea88da32
multiplex - rename control to autoreload
2016-05-22 18:21:34 -07:00
kumavis
aa2816010d
inpage - automatic dapp reload
2016-05-05 16:04:43 -07:00
kumavis
e949e6b118
contentscript - append inpage as first child
2016-04-18 11:49:06 -07:00
kumavis
066996396f
context wiring - handle and log errors
2016-02-10 11:46:13 -08:00