Websites not working/loading because of CORS
Hello guys, so in the past 2-3 days i started facing Cross-Origin Request Blocked for a lot of websites lets take chatgpt for example, if i visit it i get:
Content-Security-Policy warnings 2 Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://cdn.oaistatic.com/_next/static/chunks/sso.74deac81d652476b.js?dpl=f90a861ef09abad575887be5d613ce15a4fdb6d9. (Reason: CORS request did not succeed). Status code: (null). The resource from “https://cdn.oaistatic.com/_next/static/chunks/sso.74deac81d652476b.js?dpl=f90a861ef09abad575887be5d613ce15a4fdb6d9” was blocked due to MIME type (“text/plain”) mismatch (X-Content-Type-Options: nosniff).
and its getting so annoying that its blocking a lot of websites, i tried chromium it works fine and works awesomely no cors no problems. I even tried to disable the firefox protection, dns over https on/off, change my main dns upstream, installed firefox developer, compete uninstall/reinstall, cache clear from installers and from firefox it self nothing is working. I will provide firefox developer edition troubleshooting information but keep in mind it doesnt work on both firefox normal and developer
Please any help would be appreciate it.
Firefox v124.0.2-1
All Replies (3)
CORS warnings are common and do not necessarily break sites. What is not working exactly? Can you give an example that does not require an account?
When you test in Developer Edition, make sure you are using a new profile without signing in to your sync account.
Does it still happen with the ESR version (115)?
zeroknight said
CORS warnings are common and do not necessarily break sites. What is not working exactly? Can you give an example that does not require an account? When you test in Developer Edition, make sure you are using a new profile without signing in to your sync account. Does it still happen with the ESR version (115)?
Hello, yeah it is the cors that is blocked access to the chatgpt API, even if i dont login chatgpt3 doesnt require an account the webpage does load but consoles show cors issues and cannot access the api. i cannot send a message nor can i login on chatgpt and yes i am on new profile, all security features are off, proxy, https over dns, all the others are off logs: ``` Error: Failed to parse error response
NextJS 44
Caused by: SyntaxError: JSON.parse: unexpected character at line 1 column 1 of the JSON data Object { url: "https://chat.openai.com/backend-api/conversation/{private conversation id}", status: 403 } vendor-0009b6796f0eaa5b.js:1:87702 Error: Failed to parse error response
NextJS 34
Caused by: SyntaxError: JSON.parse: unexpected character at line 1 column 1 of the JSON data Object { url: "https://chat.openai.com/backend-api/sentinel/chat-requirements", status: 403 } vendor-0009b6796f0eaa5b.js:1:87702 Error: Failed to parse error response
NextJS 43
Caused by: SyntaxError: JSON.parse: unexpected character at line 1 column 1 of the JSON data Object { url: "https://chat.openai.com/backend-api/me", status: 403 } vendor-0009b6796f0eaa5b.js:1:87702 Uncaught (in promise) UserError: Something went wrong. If this issue persists please contact us through our help center at help.openai.com.
NextJS 35
_app-b569ca8877e5a036.js:1:1722891 Error: Failed to parse error response
NextJS 50
Caused by: SyntaxError: JSON.parse: unexpected character at line 1 column 1 of the JSON data Object { url: "https://chat.openai.com/backend-api/accounts/check/v4-2023-04-27", status: 403 } ```
more cors blocks: ``` Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://cdn.oaistatic.com/_next/static/chunks/sso.6f28731a488dcab8.js?dpl=29f22dae08a261ef96c929c3857c983792066699. (Reason: CORS request did not succeed). Status code: (null). ```
Sending messages on *chat.openai.com* with ChatGPT-3.5 works for me without an account.
Did you try the ESR version?