Content Security Policy

[Beginner090902]

Objective: I want to create an interactive storage system with a live light behind the correct shelf that corresponds to the item I'm looking for in Part-DB. I plan to use a userscript to identify the item's storage location, but a security error is preventing me from sending the storage ID to my Node-RED instance for further processing.

Problem: I get this error when my userscript tries to send data:
Connecting to 'http://localhost:1880/...' violates the Content Security Policy (CSP) directive: "default-src 'self'". The action has been blocked.

Question: Is there a way to edit this CSP to allow connections to my Node-RED instance, or is there a different method to work around this issue?

[jbtronics]

What are you doing exactly?

You cant call foreign scripts from within Part-DB.

Accessing part-dbs API should not be restricted by CSP.

[Beginner090902]

First, my project: I want to store my components in a shelving system where each box has an LED behind it, and I want to use this LED to highlight the currently searched component so that it’s easier to find in a larger storage setup — and because it just looks cool in my imagination.

I watched this video:
https://youtu.be/i6HIfhVbLFQ?si=UtzyMBqlXy25Ubiw

With his userscript it worked, but he only looked up the ID number.
https://github.com/pixelEDI/ESP32_XIAO/blob/main/22_partDB_ws2812b_mitESP32/violentmonkey_partdb.js

My userscript got the partlocatin corekt but got an error while sending it to node-red

// ==UserScript==
// @name        PartDB ID und Lagerort Finder
// @namespace   Violentmonkey Scripts
// @match       http://localhost:8080/*
// @grant       none
// @version     1.1
// @author      pixelEDI
// @description Findet die ID und den Lagerort in Part-DB
// ==/UserScript==
(function() {
    'use strict';

    setTimeout(function() {
        // Variable für den gefundenen Lagerplatz
        let gefundenerLagerplatz = null;

        // Hole ALLE Links auf der Seite
        let alleLinks = document.querySelectorAll('a');
        // Definiere ein Muster für eine Lagerplatz-Nummer (z.B. 01-05-03)
        let lagerplatzMuster = /^\d{2}-\d{2}-\d{2}$/;

        alleLinks.forEach(function(link) {
            let linkText = link.textContent.trim();
            // Prüfe, ob der Linktext unserem Muster entspricht
            if (lagerplatzMuster.test(linkText)) {
                console.log("Lagerplatz gefunden! Nummer:", linkText, "Element:", link);
                // Speichere den gefundenen Lagerplatz in der Variable
                gefundenerLagerplatz = linkText;
            }
        });

        // PRÜFE: Wurde ein Lagerplatz gefunden?
        if (gefundenerLagerplatz) {
            console.log("Sende Lagerplatz an Node-RED:", gefundenerLagerplatz);

            // Baue die URL mit der gefundenen Nummer zusammen

            const url = 'http://localhost:8081/api/from-partdb?lagerplatz=' + encodeURIComponent(gefundenerLagerplatz);
            // Sende die Anfrage an Node-RED
            fetch(url)
                .then(response => {
                    if (!response.ok) {
                        throw new Error('Network response was not ok: ' + response.status);
                    }
                    return response.text();
                })
                .then(data => {
                    console.log('Lagerplatz erfolgreich an Node-RED gesendet. Antwort:', data);
                })
                .catch(error => {
                    console.error('Fehler beim Senden an Node-RED:', error);
                });
        } else {
            console.log("Kein passender Lagerplatz gefunden.");
        }
    }, 500); // Wartezeit von 500ms

})();

Right now I’m trying to use a userscript to find the storage location of the component I’m currently searching for on the website and send it to my Node-RED instance, so that it can be forwarded to my LEDs.

I don’t know everything that’s available in your app. Maybe you can download add-ons that communicate directly with a controller like an ESP32 or a Raspberry Pi, and then you can control the LEDs directly.

Thanks in any case for the quick response and reply. I hope this helps you better understand what I want to implement.

[Beginner090902]

I identified the root cause of the issue and have created comprehensive documentation for the entire project.
Part-DB-Smart-Shelf-Light