Open URL with header {"Accept" : "application/octet-stream"} in a new window...
I want to open a file (format could vary between things like .docx, .pdf and .jpg) in a new window when someone clicks on a button. However, the URL where the file is located can return either the...
View ArticleHow to escalate or make a Self-XSS vulnerability more impactful when...
I'm a beginner bug bounty hunter, and I recently came across a Self-XSS vulnerability during my security testing on a target website. The vulnerability occurs when I inject a payload into the...
View ArticleHow to add HTTP headers in request globally for iOS in swift
func webView(webView: WKWebView!, decidePolicyForNavigationAction navigationAction: WKNavigationAction!, decisionHandler: ((WKNavigationActionPolicy) -> Void)!) { var request =...
View ArticleAdding custom request header to every API in spring boot
I am trying to add custom request header to every API I can do it by adding a piece of code to every API`public ResponseDTO setNames(@RequestHeader(value="my-header",required = false HttpServletRequest...
View ArticleMissing request header 'client_id' for method parameter of type String
While doing a post request to the Spring Boot Rest API it is throwing Servlet Request Binding Exception with error message "Missing request header 'client_id' for method parameter of type String". Even...
View ArticleHow do I add my own custom header key/value on TWebHttpRequest?
I've placed a non-visual TWebHttpRequest component onto my form and there is a Headers property where I can see and change some of the default headers:But there doesn't seem to be a way to add my own...
View ArticleDifferent styles of tokens
My company has Artifactory (Enterprise Plus 7.63.5 rev 76305900) which my team uses for container images and host some other large files that are too big or inappropriate for Github. I've been setting...
View ArticleNext.js 13 - next/headers returning strange value for host
I have a Next.js project and I'm using next/headers to programmatically return a baseUrl for requests to my API.const baseUrl = () => { const protocol = process?.env.NODE_ENV === "development" ?...
View ArticleHTTP Error 400. The size of the request headers is too long in ASP.NET...
We created an ASP.NET MVC application that uses Windows Authentication. We now have the problem that we have some users who get the following error message when accessing the site:HTTP Error 400. The...
View ArticleHow to handle a case that my website doesn't show the latest update after...
I have a website (in React with VITE) that in my latest hotfix, I didn't change the version tag and just fixed a specific bug.After the deployment was done I've seen that I can't see the updates until...
View ArticleVercel x-forwarded-for IP address changes when app first loads, from when...
ContextI'm building a very simple Blog app. There is no authentication. Each user is identified by their IP address (which is stored in DB) to provide a personalised experience like bookmarking posts,...
View ArticleHow to fetch the refresh token In all API's using FastAPI Oauth
Using the External API access token and refresh token will be fetched.By creating a new API that accepts client id and client secret as input and gives a response access token and refresh...
View ArticleWhat is causing 'size of a request header field exceeds limit' 400 bad...
I have discovered some visitors to my websites are receiving '400 bad request' error messages. I haven't been able to replicate the problem, which is making it extremely difficult to fix.From...
View ArticleBlazor webassembly scoped service to store jwt token in Browser
I have a scoped service in blazor webassembly that its methods are called from a custom AuthenticationStateProvider the name of the service is UserService, Inside this I have these methods: private...
View ArticleHow add headers after basic auth, can't login, site doesn't loads
I used selenium 4, python, chrome.I can't login in to site which requires basic authHello!I can't login if i usehttps://log:paws@new.dev.techthen site doesn't rendering and doesn't loads fullyif i trie...
View ArticleWhy Authorization/Authentication Tokens are suggested to send only as Header
I would like to know why any authentication(JWT, etc...) tokens are suggested to send only as Header, but not as a body parameter?Is there any performance issue while handling them from header vs...
View ArticleWhat's best practice for reading RSS feeds from a single machine?
BackgroundI'm trying to create my own RSS feed reader, mainly drawing stories from Medium.At the moment I'm testing and working off my own machine, and I can't access multiple IP addresses.I have about...
View ArticleHow set a response header when doing a GraphQL request with Apollo Client in...
I am using Astro and Apollo Client.I need to set a custom Response Header.How to set a custom response header when doing a GraphQL request?In my Apollo Client file:const myCustomHeaderLink = new...
View ArticleJava 21 with Spring Boot 3.2 and WebFlux unable to get Headers from GraphQL...
I am using Java 21 with Spring Boot 3.2 and WebFlux. I need to receive some of my requests using GraphQL. I have the base project working, and am able to call my Controller/Service classes. However, I...
View ArticleGetting 127.0.0.1 in request ip header
I have a NestJS server that is deployed on an EC2 instance with nginx. I want to get the client ip address from where request is originating but i get "127.0.0.1" as ip in every request no matter where...
View Article
More Pages to Explore .....