Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Error parsing header X-XSS-Protection: 1; When playing youtube videos
See original GitHub issueThis issue popped up sometime between last week and this week which causes issues such as setting the playing=true state does not work and many more. The demo site also gives this error. Here’s the Full text
Error parsing header X-XSS-Protection: 1; mode=block;
report=https://www.google.com/appserve/security-bugs/log/youtube: insecure reporting URL for
secure page at character position 22. The default protections will be applied.
Issue Analytics
- State:
- Created 6 years ago
- Reactions:9
- Comments:23 (2 by maintainers)
Top Results From Across the Web
Error parsing header X-XSS-Protection: 1; When playing ...
So, when you embed video with some embed code, at it downloads from another server where the header report=https://www.google.com/ is set, and ...
Read more >Youtube video not playing : Error parsing header X-XSS ...
Show activity on this post. I am getting the javascript console error as: Error parsing header X-XSS-Protection: 1; mode=block; ...
Read more >Google Chrome - Error parsing header X-XSS-Protection
JavaScript : Error parsing header X- XSS - Protection - Google Chrome [ Gift : Animated Search Engine : https://bit.ly/AnimSearch ] JavaScript ...
Read more >Magento: Console showing Error parsing header X-XSS-Protection ...
Magento: Console showing Error parsing header X-XSS-Protection: 1; mode=block, 1; mode=block:Helpful? Please support me on Patreon: https://www.patreon.com/.
Read more >What is the XSS Protection Header? - YouTube
Twitter: @webpwnizedThank you for watching. Please upvote and subscribe.
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
It’s a known bug in current Google Chrome and Chromium: https://bugs.chromium.org/p/chromium/issues/detail?id=807304
In current version of their browser Chrome developers had restricted the X-XSS-Protection’s report field URL to the same domain origin for some security reasons. So, when you embed video with some embed code, at it downloads from another server where the header
report=https://www.google.com/is set, and while your page is not hosted at google.com domain - the error message occurs.Just wait till they’ll sort this out.
Hola, yo también presento ese mis mensaje de error, mientras manipulo la api de youtube o incrusto un video del canal, pero efectivamente este mensaje no afecta la funcionalidad para poder visualizar el video correctamente. Actualmente puedo ver los videos sin problema y utilizar sus funcionalidades.