Amazon Kindle Desktop Publishing Report returns a blank web page

For support with specific websites

Moderator: trava90

Forum rules
Please always mention the name/domain of the website in question in your topic title.
Please one website per topic thread (to help keep things organized). While behavior on different sites might at first glance seem similar, they are not necessarily caused by the same.

Please try to include any relevant output from the Toolkit Error Console or the Developer Tools Web Console using the following procedure:
  1. Clear any current output
  2. Navigate or refresh the page in question
  3. Copy and paste Errors or seemingly relevant Warnings into a single [ code ] block.
User avatar
The_Old_Mailman
Moongazer
Moongazer
Posts: 12
Joined: 2023-12-01, 10:53

Amazon Kindle Desktop Publishing Report returns a blank web page

Unread post by The_Old_Mailman » 2023-12-06, 10:48

Hello all,

I'm an independent author and use Amazon Kindle Desktop Publishing platform to publish my books. Amazon KDP Report, where my sold units and profit are displayed, returns a white blank page in Pale Moon 32.5.1 (64 bit) on a Windows 11 PC.

The exact URL I'm accessing (after login) is:

https://kdpreports.amazon.com/

I've installed and disabled both uBlock Origin and nMatrix extensions. Indeed even in a clean installation of Pale Moon I see a blank page.

The web console shows a lot of Content Security Policy errors that I don't understand. Can anybody tell me if there is a workaround in order to display that page?

Here it is the content of the web console:

Code: Select all

Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: var ue_t0=ue_t0||+new Date();.  
kdpreports.amazon.com:10
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: 
window.ue_ihb = (window.ue_ihb || windo....  
kdpreports.amazon.com:11
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: window.ue && ue.count && ue.count('CSMLi....  
kdpreports.amazon.com:80
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: 
window.ue_ihe = (window.ue_ihe || 0) + ....  
kdpreports.amazon.com:92
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: window.ue && ue.count && ue.count('CSMLi....  
kdpreports.amazon.com:119
Content Security Policy: The page’s settings observed the loading of a resource at https://dm2d4aq3e82uc.cloudfront.net/KDPReports.b887f80b545a84ee864b.js (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent.  
(unknown)
Content Security Policy: The page’s settings observed the loading of a resource at https://dm2d4aq3e82uc.cloudfront.net/KDPReports.b887f80b545a84ee864b.css (“style-src https://kdpreports.amazon.com 'unsafe-inline' https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:*”). A CSP report is being sent.  
(unknown)
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: onload attribute on IMG element.  
kdpreports.amazon.com
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: 
!function(){function n(n,t){var r=i(n);....  
kdpreports.amazon.com:130
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: 

(function(){function l(a){for(var c=b.....  
kdpreports.amazon.com:159
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: window.ue && ue.count && ue.count('CSMLi....  
kdpreports.amazon.com:171
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: 
window.ue_ibe = (window.ue_ibe || 0) + ....  
kdpreports.amazon.com:187
Content Security Policy: The page’s settings observed the loading of a resource at https://m.media-amazon.com/images/G/01/csm/showads.v2.js?category=ad&adstype=-ad-column-&ad_size=-housead- (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent.  
(unknown)
Content Security Policy: The page’s settings observed the loading of a resource at self (“default-src https://kdpreports.amazon.com data: https://d1qwyayg24w5f4.cloudfront.net https://d3ogw7voate5v9.cloudfront.net https://*.amazon.com:* wss://*.amazon.com:* https://images-na.ssl-images-amazon.com 'sha256-4hK1bubtLC/xOCb7z0xMGpbHF7QshBW/3Y1djfujPTY='”). A CSP report is being sent. Source: window.ue && ue.count && ue.count('CSMLi....  
kdpreports.amazon.com:349
Thanks in advance!
Top
User avatar
Moonchild
Pale Moon guru
Pale Moon guru
Posts: 35651
Joined: 2011-08-28, 17:27
Location: Motala, SE

Re: Amazon Kindle Desktop Publishing Report returns a blank web page

Unread post by Moonchild » 2023-12-06, 13:25

There's no workaround for the CSP errors aside from completely disabling CSP checking. Flip preference security.csp.enable in about:config to do that.
This is an error on Amazon's side. since they do not include "self" in their "default-src" attribute, inline js isn't allowed. they should add "self" to their CSP header if they want to use in-line code (specifying the exact host as they have done is not the same, as it relates to loading other files from the same host)
"Sometimes, the best way to get what you want is to be a good person." -- Louis Rossmann
"Seek wisdom, not knowledge. Knowledge is of the past; wisdom is of the future." -- Native American proverb
"Linux makes everything difficult." -- Lyceus Anubite
Top
User avatar
The_Old_Mailman
Moongazer
Moongazer
Posts: 12
Joined: 2023-12-01, 10:53

Re: Amazon Kindle Desktop Publishing Report returns a blank web page

Unread post by The_Old_Mailman » 2023-12-06, 13:48

Moonchild wrote:
2023-12-06, 13:25
 There's no workaround for the CSP errors aside from completely disabling CSP checking. Flip preference security.csp.enable in about:config to do that.
This is an error on Amazon's side. since they do not include "self" in their "default-src" attribute, inline js isn't allowed. they should add "self" to their CSP header if they want to use in-line code (specifying the exact host as they have done is not the same, as it relates to loading other files from the same host)
I've disabled CSP, but now Amazon site throws at me this:

Code: Select all

TypeError: ep is undefined[Learn More]  
KDPReports.b887f80b545a84ee864b.js:468:959315
TypeError: ep is undefined[Learn More]  
KDPReports.b887f80b545a84ee864b.js:468:2608512
and the page is still blank. :thumbdown:

Oh, well...
Top

Return to “Web Compatibility Support”