This first started happening off-and-on, but now I haven’t been able to login in a week or so. The “Login” button just doesn’t do anything. I have allowed access to the two scripts at OpenAI and OAIStatic, allow cookies–but not 3rd party cookies.
I am getting this error in the console:
Content Security Policy: The page’s settings blocked the loading of a resource at inline (“default-src”).
and
Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”).
What specific security policy am not not allowing to cause this error? I do keep a pretty locked-down privacy-conscious browser, but almost all websites work just fine, and when they don’t it’s usually because a 3rd party script is being blocked.
I’ve fiddled with my browser’s settings and cleared local caches. Any idea what could be going on?
I would start with allowing everything to get the site to an operational state; then you can see what still can be allowed or blocked, like the Statsig eavesdropper, Gravatar icons, featuregates trials, Intercom scripts, Stripe.
There’s tons of interconnectedness and 3rd-parties, as it seems every time you turn around, you find something else OpenAI has outsourced to cloud providers.
A sampling of domains that cookie and do local storage.
I’m starting to think the problem is with FireFox’s blocking of “fingerprinters” or something subtle in the security settings. I have it set to block cryptominers and tracking content. I see the lines of obfuscated javascript that it is blocking and it ChatGPT (lol) says that the javascript could contain hints at browser tracking.
