Jump to content

CEF: How to deal with it?


Jusonex

Recommended Posts

A global whitelist would undeniably be the worst option, it would be essentially ineffective and massively restrictive. If I want to display content from my website on my server, there shouldn't be anything in the way of that other than the player deciding for themself that they don't want to receive that content. The best option would certainly be for the game to send a request to the player to whitelist a page locally, with options to turn off the requests (accept by default) and turn off the browser altogether.

Link to comment

J.S., unless I'm outdated, which I might be since I've been inactive for some time, the global whitelist is just a list of known safe websites that are always accessible, without the need for the user to allow the server to load it (Google, YouTube, Reddit, for instance) - the server may request the client to open any webpage.

Link to comment
J.S., unless I'm outdated, which I might be since I've been inactive for some time, the global whitelist is just a list of known safe websites that are always accessible, without the need for the user to allow the server to load it (Google, YouTube, Reddit, for instance) - the server may request the client to open any webpage.

Ah, that would be perfectly fine then. As long as there's no automatic exclusion for sites that aren't on the list, a whitelist would be okay.

Link to comment
J.S., unless I'm outdated, which I might be since I've been inactive for some time, the global whitelist is just a list of known safe websites that are always accessible, without the need for the user to allow the server to load it (Google, YouTube, Reddit, for instance) - the server may request the client to open any webpage.

Ah, that would be perfectly fine then. As long as there's no automatic exclusion for sites that aren't on the list, a whitelist would be okay.

A global blacklist may exist too, but it would be for, say an exploit site, or a site we know has viruses, stuff like that. We wouldn't blacklist somecrappypornsite.com or whatever you feel like wanking to in MTA.

Link to comment

Lol, ya, that's basically for the player to decide on, but I think they wouldn't do that though, since the video may lag :P

but anyways,

A global whitelist would be very good, but as for the blacklist; who would be searching for sites with viruses and such?

Link to comment
Lol, ya, that's basically for the player to decide on, but I think they wouldn't do that though, since the video may lag :P

but anyways,

A global whitelist would be very good, but as for the blacklist; who would be searching for sites with viruses and such?

Not searching, but servers could abouse and actually send viruses to the players. (Remember that if you open a direct file link it will be automatically downloaded, like my song in my bf3 server, eg: www.bf3-mta.tk/songs/war.mp3)

Link to comment
  • 2 weeks later...

getBrowserURL() doesn't work properly when I load local page first. For example I loaded "html/request.html" and went to YouTube via link - getBrowserURL() still return "html/request.html".

Tested on latest build (r6424).

Link to comment
  • 2 weeks later...
what about opening only video, can we do that ?

If I'm understanding correctly (I haven't worked with it yet), based on the fact that downloading is disabled you'd have to embed it into a webpage and load that through the browser. Fairly simple using HTML5 video.

Link to comment
getBrowserURL() doesn't work properly when I load local page first. For example I loaded "html/request.html" and went to YouTube via link - getBrowserURL() still return "html/request.html".

Fixed

If I'm understanding correctly (I haven't worked with it yet), based on the fact that downloading is disabled you'd have to embed it into a webpage and load that through the browser. Fairly simple using HTML5 video.
Can i create video using HTML then use getBrowserURL() ?

By 'downloading' I meant downloading files which are saved on your harddisk.

If you want to play a video, you'll just have to load the website which embedds the video:

loadBrowserURL(webBrowser, "https://www.youtube.com/watch?v=wZZ7oFKsKzY") 

give me link

I uploaded a new build. You can find the link on https://wiki.multitheftauto.com/wiki/Us ... ow_to_test

Link to comment

The request system was broken during the last builds and has been fixed in the current.

requestBrowserPages({"clients1.google.com", "www.youtube-nocookie.com", "gdata.youtube.com"}) 

...should fix it. I'm going to add these pages (as wildcard) to the hardcoded whitelist in the next build.

If you'd like to get a list of blocked pages, enable the developmentmode via setDevelopmentMode(true) and open the debugwindow (/debugscript 3).

Link to comment
Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...