reply on: SN release: NWC & LNBits for sending, LND for autowithdraw, NSFW labels, & more \ stacker news ~meta

pull down to refresh

0 sats \ 10 replies \ @saunter 13 Feb 2024 \ parent \ on: SN release: NWC & LNBits for sending, LND for autowithdraw, NSFW labels, & more meta

Unfortunately doesn't work for both self-custodial NWC app and Alby hosted NWC

0 sats \ 9 replies \ @k00b OP 13 Feb 2024

It's meant to work. We probably have a bug.

What errors are you getting in your console?

3234 sats \ 8 replies \ @saunter 13 Feb 2024

Uncaught (in promise) EvalError: Refused to evaluate a string as JavaScript because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src 'self' 'wasm-unsafe-eval' 'inline-speculation-rules'".

at bakeCollection (content.7f229555.js:2064:98610)
at Object.u (content.7f229555.js:2064:93234)
at Object.g [as call] (content.7f229555.js:2064:93437)
at es.o [as emit] (content.7f229555.js:2064:85238)
at es.stop (content.7f229555.js:17:30157)
at es.eoseReceived (content.7f229555.js:17:31755)
at content.7f229555.js:17:8787
at Array.forEach (<anonymous>)
at T.eoseReceived (content.7f229555.js:17:8754)
at content.7f229555.js:17:11970

0 sats \ 7 replies \ @k00b OP 13 Feb 2024

@ekzyis looks like the nostr library violates CSP

0 sats \ 6 replies \ @ek 13 Feb 2024

Mhh, interesting, I tested NWC when we launched and I could generate NWC requests 🤔

0 sats \ 5 replies \ @k00b OP 13 Feb 2024

I think it might be that the library uses wasm, some browsers probably don't support it, and we allow unsafe-eval-wasm but not unsafe-eval

0 sats \ 0 replies \ @TonyGiorgio 14 Feb 2024

Oh, you'll have issues with graphene's browser and people running lockdown mode on iOS.

That's pretty crap that it's pulling in web assembly for whatever reason. There's really no need.