Port error while changing chrome extension from manifest v1 to v2

by

The most likely cause of failure is the activation of the default Content security policy when "manifest_version": 2 is active. A consequence of the default CSP is that inline JavaScript will not be executed.

<script>chrome.extension.onConnect.addListener(...);</script>

The previous line is an example of inline code. The solution is to place the script in an external JS file:

<script src="https://stackoverflow.com/questions/11913575/script.js"><!--original contents moved to script.js--></script>

Background pages/scripts

When you were using background pages, do not use:

  • "background_page": "background.htm", or
  • "background": {"page": "background.htm"},
    but
  • "background": {"scripts": ["background.js"]}
    where background.js contains the script which was initially placed within the <script> tags at background.htm.

Inline event listeners

Browser action popups, app launchers, option pages, etc. often contain inline event listeners. By the CSP, these are also forbidden.

<button onclick="test();"> does not work. The solution is to add the event in an external JS file using addEventListener. Have a look at the documentation or this answer for an example.

Other

  • JavaScript creation from strings (eval, Function, setTimeout, …) is forbidden. Rewrite your code to not create code from strings, or use the sandbox manifest option (introduced in Chrome 21). Since Chrome 22, the unsafe-eval CSP policy can be used to lift this restriction.

  • JSONP does not work, because external (JavaScript) resources cannot be loaded in the extension’s context. Use an ordinary XMLHttpRequest instead of JSONP (more information + example).
    The only exception is when the resource is fetched over httpsnot http. The CSP can be adjusted to introduce this exception – see documentation:

    "content_security_policy": "script-src 'self' https://example.com; object-src 'self'",

Official documentation

The official documentation also provides an excellent explanation on the topic, see “Tutorial: Migrate to Manifest V2”.

More Related Contents:

  1. Chrome extension content script re-injection after upgrade or install
  2. Access global js variables from js injected by a chrome extension
  3. Custom protocol handler in chrome
  4. Is it possible to require npm modules in a chrome extension ?
  5. Injecting iframe into page with restrictive Content Security Policy
  6. Modify HTTP responses from a Chrome extension
  7. sending message to chrome extension from a web page
  8. Optionally inject Content Script
  9. Access window variable from Content Script [duplicate]
  10. Service worker registration failed. Chrome extension
  11. Permission ” is unknown or URL pattern is malformed
  12. How is the Chrome Extension ID of an unpacked extension generated?
  13. Manifest v3 Resources must be listed in the web_accessible_resources
  14. How do you integrate Universal Analytics in to Chrome Extensions?
  15. How to inject javascript into Chrome DevTools itself
  16. chrome extension: how to send ‘keydown’ event to page’s input?
  17. How to migrate manifest version 2 to v3 for chrome extension?
  18. Does content_scripts matches “chrome-extension://*/*” work?
  19. How to trigger click on a button
  20. CORS Chrome Extension with manifest version 2
  21. Persistent background page on demand or an event page that doesn’t unload?
  22. On page load event in Chrome extensions
  23. How do I log out of a chrome.identity oauth provider
  24. cannot create item with duplicate context menu id in extension
  25. How to avoid “Extension context invalidated” errors when messaging AFTER an Extension update?
  26. jQuery in Google Chrome Content Script?
  27. Can I hide my extension’s icon by default?
  28. chrome.tabs.executeScript not working?
  29. chrome.commands keyboard shortcuts not working
  30. How to debug chrome devtools panel extension?

Leave a Comment