Forbidden request header (ç¦æ¢ãªã¯ã¨ã¹ããããã¼)
ç¦æ¢ãªã¯ã¨ã¹ããããã¼ã¯ããªã¯ã¨ã¹ãã«ããã¦ããã°ã©ã çã«è¨å®ãããå¤æ´ããããããã¨ãã§ããªã HTTP ãããã¼ã®ååã¨å¤ã®çµã¿åããã§ããã¬ã¹ãã³ã¹ã§å¤æ´ãããã¨ãç¦æ¢ããã¦ãããããã¼ã«ã¤ãã¦ã¯ãç¦æ¢ã¬ã¹ãã³ã¹ãããã¼åãåç §ãã¦ãã ããã
ãã®ãããªãããã¼ãå¤æ´ãããã¨ã¯ç¦æ¢ããã¦ãã¾ãããªããªããã¦ã¼ã¶ã¼ã¨ã¼ã¸ã§ã³ãããããã¼ãå®å
¨ã«å¶å¾¡ã§ããããã§ãã
ä¾ãã°ã Date ãããã¼ã¯ç¦æ¢ãªã¯ã¨ã¹ããããã¼ã§ããããããã®ã³ã¼ãã§ã¯ã¡ãã»ã¼ã¸ã® Date ãã£ã¼ã«ããè¨å®ãããã¨ã¯ã§ãã¾ããã
fetch("https://httpbin.org/get", {
headers: {
Date: new Date().toUTCString(),
},
});
Sec- ã§å§ã¾ãååã¯ã fetch() ãªã©ã®ãããã¼ãéçºè
ãå¶å¾¡ã§ãã API ãããæ°ãããããã¼ãä½æããããã«äºç´ããã¦ãã¾ãã
ç¦æ¢ãããã¼ã¯æ¬¡ã®ããããã§ãã
Accept-CharsetAccept-EncodingAccess-Control-Request-HeadersAccess-Control-Request-MethodConnectionContent-LengthCookieDateDNTExpectHostKeep-AliveOriginPermissions-PolicyProxy-ã§å§ã¾ããããã¼Sec-ã§å§ã¾ããããã¼RefererTETrailerTransfer-EncodingUpgradeViaX-HTTP-Methodããã ãç¦æ¢ã¡ã½ããå (CONNECT,TRACE,TRACK) ãå«ãå ´åã®ã¿X-HTTP-Method-Overrideããã ãç¦æ¢ã¡ã½ããåãå«ãå ´åã®ã¿X-Method-Overrideããã ãç¦æ¢ã¡ã½ããåãå«ãå ´åã®ã¿
ã¡ã¢:
User-Agent ãããã¼ã¯ç¦æ¢ã§ããããããã§ã¯ãªããªãã¾ããããããã Chrome ã¯ãã¾ã ã« Fetch ãªã¯ã¨ã¹ããããã®ãããã¼ãåé¤ãã¾ããï¼Chromium bug 571722 ãåç
§ï¼ã
ã¡ã¢:
Referer ãããã¼ã¯ãä»æ§æ¸ã§ã¯ç¦æ¢ãããã¼ã¨ãã¦ãªã¹ãã¢ããããã¦ãã¾ãããã¦ã¼ã¶ã¼ã¨ã¼ã¸ã§ã³ãããããã¼ãå®å
¨ã«å¶å¾¡ã§ããããã§ã¯ãªãããããã¼ã¯ããã°ã©ã ã«ãã£ã¦å¤æ´ãããã¨ãã§ãã¾ããä¾ãã°ã fetch() ã使ç¨ããå ´åã Referer ãããã¼ã¯ã referrer ãªãã·ã§ã³ãä»ãã¦ããã°ã©ã ã«ãã£ã¦å¤æ´ãããã¨ãã§ãã¾ãã
é¢é£æ å ±
- ç¨èªéã®ç¨èª: