Host Permissions CORS contradiction #39168
Description
MDN URL
https://developer.mozilla.org/en-US/docs/Mozilla/Add-ons/WebExtensions/manifest.json/permissions
What specific section or headline is this issue about?
Host Permissions
What information was incorrect, unhelpful, or incomplete?
On the permissions page There is the line under host permissions that says:
The extra privileges include:
XMLHttpRequest and fetch access to those origins without cross-origin restrictions (even for requests made from content scripts)
But on the host permissions page the same section says:
The extra privileges include:
XMLHttpRequest and fetch access to those origins without cross-origin restrictions (though not for requests from content scripts, as was the case in Manifest V2).
Which contradicts the other page for what content scripts can do
What did you expect to see?
Consistent language between pages
Do you have any supporting links, references, or citations?
No response
Do you have anything more you want to share?
No response
MDN metadata
Page report details
- Folder:
en-us/mozilla/add-ons/webextensions/manifest.json/permissions - MDN URL: https://developer.mozilla.org/en-US/docs/Mozilla/Add-ons/WebExtensions/manifest.json/permissions
- GitHub URL: https://github.com/mdn/content/blob/main/files/en-us/mozilla/add-ons/webextensions/manifest.json/permissions/index.md
- Last commit: af98ab1
- Document last modified: 2025-04-07T15:34:20.000Z