Silver bullet working on chrome but not firefox

v2: Troubleshooting
1

I have followed the guide created by Zef on how to setup silver bullet over clouflare zero trust. The problem is that when I open it in either Zen (my desktop browser) or quetta (my mobile broswer) the inline lua does not work (the console gives off logs that amount to, indexing failed / index plug not loaded). Chromium on the other hand loads the lua, but gives off a warning
Error: Failed to register a ServiceWorker for scope ('https://****.*******.**/') with script ('\https://****.*******.**/service_worker.js'): The script resource is behind a redirect, which is disallowed. Although everything seems to work fine.
localhost:3000 works fully on Zen browser, but the inline lua fails in chromium.
I am greatly confused. Any help would be appreciated.

2

Did you follow the step in that guide that bypasses authentication for certain paths, specifically the service worker?

3

SilverBullet bypass application with the domains
\silverbullet.mydomain.me/.client/*
\silverbullet.mydomain.me/service_worker.js
\silverbullet.mydomain.me/_plug/*
The last one on there was me trying random things to see if it would work. (the initial backslash is me circumventing the auto-formatting)
Policy is set to everyone (i.e. add rules -> include (or) -> selector -> Everyone (selected from the drop down menu)
I have setup a separate application pointing to \silverbullet.mydomain.me with an otp locked behind my email.
When accessing on chrome, I see the following in my index.md

image
image695×577 47.1 KB

Also, as mentioned in the original post, chromium spits out the service_worker.js behind a redirect error, but zen does not. Looking at the network tab of devtools, Chromium returns a 302 error, and Zen does not even log attempting to GET service_worker.js.
Navigating to \ silverbullet.mydomain.me/service_worker.js works in chromium and not in Zen (in zen, I am sent back to the index with "Failed to navigate: not found"
Thank you for reaching out and trying to help.
The only thing I can thing is that the bypass policy for "everyone" still requires an otp of some sort since going to \ silverbullet.mydomain.me/service_worker.js still asks me for an otp, though that might simply be because I am accessing \ silverbullet.mydomain.me

4

Just found the problem. The policy for everyone was set to access not bypass.

Apologies.

Thanks for the help nonetheless

1 Like