Blog Documentation Try Vanilla Cloud
Please upgrade here. These earlier versions are no longer being updated and have security issues.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.
Options

jsConnect Doesn't work in chrome

odannycodannyc New
in Vanilla 2.0 - 2.8

When I try to sign in via SSO with google chrome on my website I get error:

"Whoops!
Your sso timed out during the request. Please try again."

The test URL does work. I checked the headers and it is sending in JSON header.

I did some research and I got an error in my console saying this:
Refused to execute script from 'https://url/blahblah' because its MIME type ('application/json') is not executable, and strict MIME type checking is enabled.

So it turns out that within the response header there is the setting: X-Content-Type-Options: nosniff
This causes some issues I've been reading.

Has anyone ran into that same problem? Anyway to fix it?

Tagged:

Comments

  • Options
    LincLinc Detroit Admin

    You're probably using a callback argument, which makes it JSONP, which means you want a MIME type of application/javascript instead. You need to set this header differently on your jsConnect endpoint.

  • Options
    odannycodannyc New

    Awesome ! Thanks ...

Sign In or Register to comment.