Giter VIP home page Giter VIP logo

Comments (11)

norkator avatar norkator commented on August 22, 2024

New thing added to this api is X-XSRF-TOKEN header, when I populated that it worked again. Otherwise giving un authorized. Now have to solve where to ask / calculate this token.

from paketin-seuranta.

developerfromjokela avatar developerfromjokela commented on August 22, 2024

from paketin-seuranta.

norkator avatar norkator commented on August 22, 2024

Where'd you get that one for testing?

On Sun, Nov 22, 2020, 11:54 Martin Kankaanranta @.***> wrote: New thing added to this api is X-XSRF-TOKEN header, when I populated that it worked again. Otherwise giving un authorized. Now have to solve where to ask / calculate this token. — You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub <#83 (comment)>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AJU4T5RZYRXAYESOZW566RDSRDNUPANCNFSM4T3DQPBA .

From @ristomatti at private Trello board so @ristomatti decides should it be shared for you

from paketin-seuranta.

norkator avatar norkator commented on August 22, 2024

Is the only right way to handle this via loading tracking page because it initially gives response header "Set-Cookie" having that token which is valid for X time. I'm not sure.

from paketin-seuranta.

ristomatti avatar ristomatti commented on August 22, 2024

@norkator Sure you can share it (privately). It's only my new laptop. 😄 But it'll be a home delivery anyway. To be delivered Monday/Tuesday I believe.

from paketin-seuranta.

norkator avatar norkator commented on August 22, 2024

Okay theres another way.. I stole this from Aftership website: 1ZA529F90495123295 @developerfromjokela

from paketin-seuranta.

developerfromjokela avatar developerfromjokela commented on August 22, 2024

Where'd you get that one for testing?

On Sun, Nov 22, 2020, 11:54 Martin Kankaanranta @.***> wrote: New thing added to this api is X-XSRF-TOKEN header, when I populated that it worked again. Otherwise giving un authorized. Now have to solve where to ask / calculate this token. — You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub <#83 (comment)>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AJU4T5RZYRXAYESOZW566RDSRDNUPANCNFSM4T3DQPBA .

From @ristomatti at private Trello board so @ristomatti decides should it be shared for you

I meant how did you find about the header? Or where?

from paketin-seuranta.

norkator avatar norkator commented on August 22, 2024

Where'd you get that one for testing?

On Sun, Nov 22, 2020, 11:54 Martin Kankaanranta @.***> wrote: New thing added to this api is X-XSRF-TOKEN header, when I populated that it worked again. Otherwise giving un authorized. Now have to solve where to ask / calculate this token. — You are receiving this because you are subscribed to this thread. Reply to this email directly, view it on GitHub <#83 (comment)>, or unsubscribe https://github.com/notifications/unsubscribe-auth/AJU4T5RZYRXAYESOZW566RDSRDNUPANCNFSM4T3DQPBA .

From @ristomatti at private Trello board so @ristomatti decides should it be shared for you

I meant how did you find about the header? Or where?

Screenshot 2020-11-22 at 18 08 29

Just simply tested with chrome and noticed that token, then tried with rest client tool with Paketin Seuranta current config, got that permission denied and then with token which I copied from this browser request -> then it worked.

from paketin-seuranta.

norkator avatar norkator commented on August 22, 2024

This stupid X-XSRF-TOKEN-ST is what I am looking for, its calculated at Bundle javascript file when entering ups webpage. I try engineer how its done so can mimic it.

from paketin-seuranta.

norkator avatar norkator commented on August 22, 2024

I don't know why I think this so hard, if you call "https://www.ups.com/track?loc=en_US" with get method theres header in response with X-XSRF-TOKEN-ST

from paketin-seuranta.

norkator avatar norkator commented on August 22, 2024

Okay found out just by looking how ups page is actually handling these tokens so now theres header called Cookie with X-XSRF-TOKEN and its corresponding token and then own X-XSRF-TOKEN with X-XSRF-TOKEN-ST

from paketin-seuranta.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.