Firefox SecurityError: "The operation is insecure."

Question

I am using Backbone.LocalStorage plugin with backbone app. It is working fine in chrome and safari however, it is giving me below error in firefox.

DOMException [SecurityError: "The operation is insecure." code: 18 nsresult: 0x80530012 location: http://localhost:8000/js/libs/backbone.localStorage/backbone.localStorage.js?version=1453910702146:137]

I am using python simpleHttpServer

How can I resolve this error?

UPDATE

Here is my code.

paths: {
    'jquery'        : 'libs/jquery/dist/jquery',
    'underscore'    : 'libs/underscore/underscore',
    'backbone'      : 'libs/backbone/backbone',
    'localStorage'  : 'libs/backbone.localStorage/backbone.localStorage',
    'text'          : 'plugins/text'
}

Here is collection where localStorage is used.

var Items = Backbone.Collection.extend({

    model: SomeModel,

    localStorage: new Backbone.LocalStorage('items'),
});

UPDATE 2

I am using firefox 36.

UPDATE 3

It seems like it is a CORS issue but my firefox version is 36. Which should be fine.

UPDATE 4

I am also getting this error in firefox nightly version 44. I also updated my firefox to version 44. Still same error.

FF 61.0.2 here and trying to figure this out, when it works in Chrome and Edge. — Kizmar, Aug 30 '18 at 16:04

score 5 · Answer 1 · edited Jun 12 '19 at 09:07

5

Make sure Firefox has cookies enabled. The setting can be found under Menu/Options/Privacy/History

In the dropdown, select either 'Remember History' or if You prefer use custom settings for history, but select option Accept cookies from sites

Hope it helps.

edited Jun 12 '19 at 09:07

J Foley

1,038
1
17
30

answered Mar 11 '16 at 10:16

Daniel

1,364
1
11
18

score 4 · Answer 2 · edited Jan 11 '19 at 19:58

This happens when we try to access a resource (CSS...) that is located on a different domain. To deal with this error we can use this:

                   try {
                     //your critical access to ressources !
                     //rules = document.styleSheets[i].cssRules;
                        } catch(e) {
                   if(e.name !== "SecurityError") {
                       throw e;
                       }

score 1 · Answer 3 · edited May 23 '17 at 12:33

1

Make sure your domains are same. verify Same Origin Policy which means same domain, subdomain, protocol (http vs https) and same port.

What is Same Origin Policy?
How does pushState protect against potential content forgeries?

edited May 23 '17 at 12:33

Community

1
1

answered Jan 27 '16 at 19:17

Venkat.R

7,420
5
42
63

1

I know it is the problem of Same Origin Policy however, I am not sure how can I resolve this? I also don't see why this occurs because I am not sending any request to another domain. All resources are in same domain i.e. localhost in this case. – Om3ga Jan 27 '16 at 19:30
place your code snippet in your question to proceed further – Venkat.R Jan 28 '16 at 01:50

score 0 · Answer 4 · answered Feb 09 '20 at 15:35

0

I had similar issue with one script, I dig into error and found it required SSL websockets, so I started SSL and again checked, and It worked. Try enabling HTTPS and access website as https://127.0.0.1/ It may solve error.

answered Feb 09 '20 at 15:35

Jitendra

1,107
2
12
22

Firefox SecurityError: "The operation is insecure."

4 Answers4

Linked