Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Don't most (all?) browsers consider file:// and localhost to be secure for the sake of enabling those features?

https://developer.mozilla.org/en-US/docs/Web/Security/Defens...





Unfortunately, no. CORS will block this on Chrome and Firefox.

https://developer.mozilla.org/en-US/docs/Web/HTTP/Guides/COR...

The security risk : https://www.mozilla.org/en-US/security/advisories/mfsa2019-2...

You need a local webserver. Or bundle everything in one html file.

reply


So that's why I have to keep booting a Windows 7 computer in order to use an html file I saved 10+ years ago? Some dumb shit android app.

reply




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: