admin管理员组

文章数量:1290927

My website does not work with Chrome 92. With Chrome 91 everything was fine. The problem is that SharedArrayBuffer is not enabled since Chrome 92. When I try to enable it by adding the header "Cross-Origin-Embedder-Policy: requre-corp and Cross-Origin-Opener-Policy: same-origin" I get the error message:

The Cross-Origin-Opener-Policy header has been ignored, because the origin was untrustworthy. It was defined either in the final response or a redirect. Please deliver the response using the HTTPS protocol. You can also use the 'localhost' origin instead. See and .

Does "Please deliver the response using the HTTPS protocol" mean I have to switch to HTTPS only to use SharedArrayBuffer? If so, what’s the reason?

My website does not work with Chrome 92. With Chrome 91 everything was fine. The problem is that SharedArrayBuffer is not enabled since Chrome 92. When I try to enable it by adding the header "Cross-Origin-Embedder-Policy: requre-corp and Cross-Origin-Opener-Policy: same-origin" I get the error message:

The Cross-Origin-Opener-Policy header has been ignored, because the origin was untrustworthy. It was defined either in the final response or a redirect. Please deliver the response using the HTTPS protocol. You can also use the 'localhost' origin instead. See https://www.w3/TR/powerful-features/#potentially-trustworthy-origin and https://html.spec.whatwg/#the-cross-origin-opener-policy-header.

Does "Please deliver the response using the HTTPS protocol" mean I have to switch to HTTPS only to use SharedArrayBuffer? If so, what’s the reason?

  • javascript
  • http
  • https
Share Improve this question edited Apr 9, 2023 at 12:54 dumbass 27.2k4 gold badges36 silver badges73 bronze badges asked Jul 28, 2021 at 21:40 Koronis NeilosKoronis Neilos 7922 gold badges8 silver badges24 bronze badges
Add a ment  | 

1 Answer 1

Reset to default 7

Yes, you need to use HTTPS.

Certain features (which includes SharedArrayBuffer, due to the revelations of Spectre-style attacks) are security-sensitive and require a greater degree of isolation. COOP/COEP allows the browser to isolate your page from other sites to a greater degree, which allows this feature to be safer to use.

Some features, including COOP, have significant effects on how the browser treats content from your origin. The browser can't be sure that this assertion hasn't been tampered with unless it is delivered from a potentially trustworthy origin (if that's not localhost, this means over HTTPS).

本文标签: javascriptDo I have to switch to https to use quotSharedArrayBufferquot in Chrome 92Stack Overflow

版权声明:本文标题:javascript - Do I have to switch to https to use "SharedArrayBuffer" in Chrome 92? - Stack Overflow 内容由网友自发贡献,该文观点仅代表作者本人, 转载请联系作者并注明出处:http://www.betaflare.com/web/1741508984a2382494.html, 本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌抄袭侵权/违法违规的内容,一经查实,本站将立刻删除。