BriskBard, CEF4Delphi, WebView4Delphi, WebUI4Delphi and WebUI4CSharp

The forum for BriskBard users and CEF4Delphi / WebView4Delphi / WebUI4Delphi / WebUI4CSharp developers
http://www.briskbard.com/forum/

cross-origin

http://www.briskbard.com/forum/viewtopic.php?t=2181

Page 1 of 1

cross-origin

Posted: Sat Aug 12, 2023 2:38 pm
by coater
when I use CEF4Delphi-109.0.5414.120_CEF 109.1.18 which includes Chromium 109.0.5414.120, I enconter a message in devtool: "Full authentication is required to access this resource". (XHR, GlobalCEFApp.LogSeverity := LOGSEVERITY_ERROR; I cannot see errors in log file)
So the web cannot be opened.
I think it is caused by something related to "Referrer Policy: strict-origin-when-cross-origin".
But I can open the web by chrome with the version of 109 rightly.


I have alredy set this:

GlobalCEFApp.IgnoreCertificateErrors := true;
GlobalCEFApp.DisableRequestHandlingForTesting := TRUE;
GlobalCEFApp.DisableWebSecurity := true;

Keen for your help, thank you!

Re: cross-origin

Posted: Sat Aug 12, 2023 2:53 pm
by salvadordf
Hi,

I've never seen that error message but I see many results when I search "Full authentication is required to access this resource" (including quotes) in Google.

Perhaps this result could be helpful :
https://stackoverflow.com/questions/26296779/chrome-v37-38-cors-failing-again-with-401-for-options-pre-flight-requests

Try navigating to that web page with the unmodified MiniBrowser demo and the official CEF sample application :
https://cef-builds.spotifycdn.com/cef_binary_115.3.14%2Bg91e8c06%2Bchromium-115.0.5790.172_windows64_client.tar.bz2

Re: cross-origin

Posted: Sat Aug 12, 2023 3:35 pm
by coater
I try navigating to that web page with the unmodified MiniBrowser demo. It showed error ERR_CERT_AUTHORITY_INVALID (-202).
If I set this:

GlobalCEFApp.IgnoreCertificateErrors := true;
GlobalCEFApp.DisableRequestHandlingForTesting := TRUE;
GlobalCEFApp.DisableWebSecurity := true;

The web can be visited!

MiniBrowser:
procedure CreateGlobalCEFApp;
begin
GlobalCEFApp := TCefApplication.Create;
GlobalCEFApp.cache := 'cache';
GlobalCEFApp.EnablePrintPreview := True;
GlobalCEFApp.EnableGPU := True;
GlobalCEFApp.LogFile := 'debug.log';
GlobalCEFApp.LogSeverity := LOGSEVERITY_INFO;
GlobalCEFApp.IgnoreCertificateErrors := true;
GlobalCEFApp.DisableRequestHandlingForTesting := TRUE;
GlobalCEFApp.DisableWebSecurity := true;
//GlobalCEFApp.ChromeRuntime := True;
end;

Mine:
procedure CreateGlobalCEFApp;

begin
GlobalCEFApp := TCefApplication.Create;
GlobalCEFApp.LogFile := 'debug.log';
GlobalCEFApp.EnablePrintPreview := true;
GlobalCEFApp.OnProcessMessageReceived :=
GlobalCEFApp_OnProcessMessageReceived;
GlobalCEFApp.OnWebKitInitialized := GlobalCEFApp_OnWebKitInitialized;
GlobalCEFApp.LogSeverity := LOGSEVERITY_ERROR;//; LOGSEVERITY_DISABLE
GlobalCEFApp.AutoplayPolicy := appNoUserGestureRequired;
GlobalCEFApp.DisablePDFExtension := true;
GlobalCEFApp.cache := ExtractFilePath(Application.ExeName) + 'cookies';
GlobalCEFApp.PersistSessionCookies := true;
GlobalCEFApp.IgnoreCertificateErrors := true;
GlobalCEFApp.DisableRequestHandlingForTesting := TRUE;
GlobalCEFApp.DisableWebSecurity := true;
end;

I add GlobalCEFApp.EnableGPU and deleted GlobalCEFApp.PersistSessionCookies. It works!
Thank you very much!
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited