[英]fetch works in Node.js and Deno but not in browser or Postman
I get an Unauthorized error when running this code in the Chrome console (with web security disabled and CSP bypass), but it works fine in Node.js and Deno and Postman, returning the expected JSON object.
Node.js 和 Deno 是否注入了一些标头以使其工作?
他们在做什么与浏览器的 fetch 不同?
我以为他们是一样的?
const profileId = 'foo'; // not real values obviously
const sessionId = 'bar';
getRelativesMetaData(profileId, sessionId).then(console.log);
async function getRelativesMetaData(myProfileId, sessionId) {
const headers = {
'x-requested-with': 'XMLHttpRequest',
'Cookie': `current-profile-id=${myProfileId}; sessionid=${sessionId}`
};
const url = `https://you.23andme.com/p/${myProfileId}/family/relatives/ajax/`;
const resp = await fetch(url, { headers });
const json = await resp.json();
return json;
}
恰恰相反: Cookie是被禁止的 header 名称之一,任何兼容的浏览器都不允许您在请求中设置此 header。 此限制不适用于 Deno 和 Node 等环境,因为它们不是浏览器,因此在那里没有意义。
Perhaps you are aware that 23andMe does have an API — but it's restricted-access, which (I guess) is why you are wanting to simply use your session cookie to access your data (presumably in a browser-based web app that you've创建)。 如果我对此的直觉是正确的,那么您可能会从使用 Deno/Node/etc 操作代理服务器中受益。 这样您就可以在浏览器应用程序中获取数据,而无需担心该环境中的身份验证限制(这也提供了不在客户端应用程序代码中公开 session 信息的好处)。
node.js-Passport在浏览器请求中不持久,可与Postman一起使用
[英]node.js - Passport not persisting across browser requests, works with Postman
无法在浏览器中访问 node.js 快速端点,但 postman 工作正常
[英]Not able to access node.js express endpoints in browser, but postman works just fine
Node.js API-适用于Postman,但不适用于Angular.js
[英]Node.js API - Works with Postman but not works in Angular.js
PUT 请求适用于 Postman 但不是 deno typescript 文件作为提取请求
[英]PUT request works in Postman but not a deno typescript file as a fetch request
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.