Tried this to no avail:
session.webRequest.onHeadersReceived({
urls: ['*://*/*'],
}, (details, done) => {
console.log(details.url, JSON.stringify(details.responseHeaders));
done({
cancel: false,
responseHeaders: details.responseHeaders,
});
});
Giving this for https://player.twitch.tv/?channel=oyed:
{
"Accept-Ranges": [
"bytes"
],
"Connection": [
"keep-alive"
],
"Content-Length": [
"0"
],
"Date": [
"Mon, 27 Jul 2020 12:52:06 GMT"
],
"Location": [
"/embed-error.html?errorCode=NoParent&content=player.twitch.tv%2F%3Fchannel%3Doyed"
],
"Server": [
"nginx"
],
"Set-Cookie": [
"unique_id=r4zgG3QlXKaK75BWs4bYpYiDqLYASvdj; expires=Sat, 27 Jul 2030 12:52:05 GMT; domain=.twitch.tv; path=/; secure; samesite=none",
"unique_id_durable=r4zgG3QlXKaK75BWs4bYpYiDqLYASvdj; expires=Sat, 27 Jul 2030 12:52:05 GMT; domain=.twitch.tv; path=/; secure; samesite=none; httponly"
],
"Strict-Transport-Security": [
"max-age=31536000"
],
"Vary": [
"Access-Control-Request-Headers, Access-Control-Request-Method, Origin"
],
"Via": [
"1.1 varnish"
],
"X-Cache": [
"MISS"
],
"X-Cache-Hits": [
"0"
],
"X-Content-Type-Options": [
"nosniff"
],
"X-Served-By": [
"cache-hkg17922-HKG"
],
"X-Timer": [
"S1595854326.917389,VS0,VE86"
],
"X-XSS-Protection": [
"1; mode=block"
]
}
Couldn’t find any Content-Security-Policy