Comments (16)
e10s is deactivated in SlimerJS.
from slimerjs.
to ignore ssl errors, there is no preferences or an API for that. It seems that the only way to do it, is to detect the error page, to add cert exception on the fly and then to load the request page
from slimerjs.
See http://darrendev.blogspot.jp/2013/10/slimerjs-getting-it-to-work-with-self.html for a workaround...
from slimerjs.
I wonder if there's a way to make darrendev's method automatic?
from slimerjs.
from slimerjs.
I think that --ssl-protocol
must be implemented now that POODLE forced many websites to retire SSLv3. Or at least setup Slimer such that TLS is used by default.
from slimerjs.
Unfortunately there is no way to ignore SSL errors in the current stage of xulrunner. Adding them manually after detected is not good idea. It will work when the SSL error is triggered on the main request, but the SSL error could be caused by image, flash or any other resource on the page. It will be not easy to refresh those resources manually after adding the cert.
I filled a bug: https://bugzilla.mozilla.org/show_bug.cgi?id=1106173
We must follow the progress on that issue. Hope they will provide an API or at least compile flag.
from slimerjs.
@CMCDragonkai I stumbled upon this issue and I want to note that I do have sample code for automating the launch-Firefox method via shell (and without launching Firefox).
cert="$(openssl s_client -connect "$1" -servername "${1%%:*}" < /dev/null | sed -ne '/BEGIN CERT/,/END CERT/p')"
echo "$cert" | openssl x509 -text | tac >&2
fingerprint="$(echo "$cert" | openssl x509 -sha256 -fingerprint | head -n 1 | sed -re 's/.*=//')"
echo -e "$1\tOID.2.16.840.1.101.3.4.2.1\t$fingerprint\t${2:-U}\tbWFudWFsIG92ZXJyaWRl"
You need to restart SlimerJS for the new cert_overrides to take effect.
from slimerjs.
This has been a huge issue for us, because my proprietary screenshot solution (built in 2007) has always been based on the Gecko engine and I found no way to overcome this. So, I feel your pain. Now that I'm testing for possible backup capture methods and leaning toward slimerjs for that, I'm facing the possibility of still not being able to ignore SSL errors. Ugh. I may have to implement a third backup using Chrome or phantomjs, but that is definitely not ideal to maintain all that code and updates, etc.
I wanted to mention that there was a plugin that worked, at one time, to automatically detect SSL errors and add a temporary exception. It is here: https://addons.mozilla.org/en-US/firefox/addon/skip-cert-error/
It no longer works, for me at least, and has been discontinued due to e10s requirements that it won't pass. Just thought I'd mention it, in case looking at it might spark some ideas. However, I realize this probably won't be solved unless Gecko gives some means to do so.
from slimerjs.
@4e976623 What are you trying to do?
@puravida So basically we just need to rewrite the extension, even the original creator said he'll help.
from slimerjs.
@CMCDragonkai You asked how to automate the SSL exception line generation and I shared my shell code snippet.
Globally I am trying to extend SlimerJS in a minimal way to get a usable Gecko-based minimal-UI browser. I do have to patch SlimerJS omni.ja, though. I can actually use SlimerJS for 95% of my browsing while using Firefox for the remaining cases.
from slimerjs.
@4e976623 Thank you for sharing your code. I did see it, but it is a problem to have to restart the process to enable the SSL bypass. It introduces significant delay for the capture. That might not matter in a browser automation testing or personal browsing scenario, but for a service; speed is crucial.
When the "Skip Cert Error" plugin was working, it did not require a restart to bypass. So, there is hope but the original creator made it sound like e10s had killed this ability. Since e10s doesn't affect my usage (that I know of, yet), I have not researched it. I have no idea what it is or what limitations it imposes.
@CMCDragonkai Did you chat with the original creator or did he offer assistance, generally, somewhere? It would be great if he could elaborate on why he cannot make the plugin work any longer, so that we can determine any hope for using his method (which is a rewrite of another plugin). If you aren't already in touch with him, I could reach out to him and invite him to this thread.
from slimerjs.
I agree that needing a restart is a drawback.
Maybe SlimerJS could expose rereading the SSL exception list?
When I ask for exposing internal APIs with interactive-use motivation,
it gets rejected as out of scope, but here there is a reasonable use for
that API in a full-automation situation.
from slimerjs.
I've gotten to concurrency and performance testing with slimerjs and found that running multiple, concurrent capture threads in a persistent slimerjs instance is not really going to work for my use case. So, I will end up running a separate slimerjs instance for each capture. The overhead seems nominal. So, in my case, it will be restarting every time anyway. I suppose that as long as I can catch these SSL errors, I could just retry the capture right away (assuming the exception list is updated and reloaded on retry).
from slimerjs.
I guess there isn't any progress about --ignore-ssl-errors. @laurentj
from slimerjs.
Is there any progress on --ssl-certificates=/path ? I can't seem to find any on the issues or the pull request. @laurentj
from slimerjs.
Related Issues (20)
- Documentation improvement: major difference between the behaviour of evaluateJavaScript in PhantomJS VS SlimerJS
- Is it possible to use with remote running firefox instance?
- when will FF 61 be supported? HOT 1
- segmentation fault errors
- how to access browser default popup?
- SlimerJS not compatible with Firefox 62 HOT 5
- SlimerJS not compatible with Firefox 63 HOT 11
- slimer 1.0.0 leaves a lot of garbage in /tmp HOT 1
- Can't render this site, https://piaofang.maoyan.com/dashboard
- Cannot delete window.callPhantom HOT 1
- Strange bash script behaviour on Heroku
- Script won't work if modules aren't ended with semicolons before async handler HOT 1
- SlimerJS crashes on Windows Server with Firefox 67 HOT 1
- I need each script to connect to a different proxy
- 'expires' attribute from page.cookies is incorrect
- Arch/Manjaro package manager can not download from download.slimerjs.org HOT 1
- Appropriate version of firefox for slimerjs on a raspberry pi? HOT 2
- No more development on Slimerjs HOT 1
- Thumbnail is not generating for video assets
- Crash Annotation GraphicsCriticalError for headless selenium on firefox browser HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from slimerjs.