search

TachibanaGeneralLaboratories / download-navi

Free and Open Source software download manager
GNU General Public License v3.0
818 stars 86 forks source link

Cyclic redirects when downloading from Google Drive #61

Open proninyaroslav opened 4 years ago

proninyaroslav commented 4 years ago

This happens on the unverified download confirmation page.

E: null: [HTTP/1.1 302 Found]
E: Access-Control-Allow-Credentials: [false]
E: Access-Control-Allow-Headers: [Accept, Accept-Language, Authorization, Cache-Control, Content-Disposition, Content-Encoding, Content-Language, Content-Length, Content-MD5, Content-Range, Content-Type, Date, GData-Version, google-cloud-resource-prefix, Host, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, Origin, OriginToken, Pragma, Range, Slug, Transfer-Encoding, Want-Digest, x-chrome-connected, X-ClientDetails, X-Client-Version, X-Firebase-Locale, X-Goog-Firebase-Installations-Auth, X-Firebase-Client, X-Firebase-Client-Log-Type, X-GData-Client, X-GData-Key, X-GoogApps-Allowed-Domains, X-Goog-AdX-Buyer-Impersonation, X-Goog-Api-Client, X-Goog-AuthUser, x-goog-ext-124712974-jspb, x-goog-ext-259736195-jspb, X-Goog-PageId, X-Goog-Encode-Response-If-Executable, X-Goog-Correlation-Id, X-Goog-Request-Info, X-Goog-Request-Reason, X-Goog-Experiments, x-goog-iam-authority-selector, x-goog-iam-authorization-token, X-Goog-Spatula, X-Goog-Travel-Bgr, X-Goog-Travel-Settings, X-Goog-Upload-Command, X-Goog-Upload-Content-Disposition, X-Goog-Upload-Content-Length, X-Goog-Upload-Content-Type, X-Goog-Upload-File-Name, X-Goog-Upload-Header-Content-Length, X-Goog-Upload-Offset, X-Goog-Upload-Protocol, x-goog-user-project, X-Goog-Visitor-Id, X-Goog-FieldMask, X-Google-Project-Override, X-Goog-Api-Key, X-HTTP-Method-Override, X-JavaScript-User-Agent, X-Pan-Versionid, X-Proxied-User-IP, X-Origin, X-Referer, X-Requested-With, X-Stadia-Client-Context, X-Upload-Content-Length, X-Upload-Content-Type, X-Use-HTTP-Status-Code-Override, X-Ios-Bundle-Identifier, X-Android-Package, X-Ariane-Xsrf-Token, X-YouTube-VVT, X-YouTube-Page-CL, X-YouTube-Page-Timestamp, X-Goog-Meeting-Botguardid, X-Goog-Meeting-Debugid, X-Goog-Meeting-Token, X-Client-Data, X-Sfdc-Authorization, MIME-Version, Content-Transfer-Encoding, X-Earth-Engine-App-ID-Token, X-Earth-Engine-Computation-Profile, X-Earth-Engine-Computation-Profiling, X-Play-Console-Experiments-Override, X-Play-Console-Session-Id]
E: Access-Control-Allow-Methods: [GET,OPTIONS]
E: Access-Control-Allow-Origin: [*]
E: Alt-Svc: [quic=":443"; ma=2592000; v="46,43",h3-Q050=":443"; ma=2592000,h3-Q049=":443"; ma=2592000,h3-Q048=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,h3-T050=":443"; ma=2592000]
E: Cache-Control: [private, max-age=0]
E: Content-Length: [0]
E: Content-Type: [text/html; charset=UTF-8]
E: Date: [Wed, 25 Mar 2020 18:27:25 GMT]
E: Expires: [Wed, 25 Mar 2020 18:27:25 GMT]
E: Location: [https://docs.google.com/nonceSigner?nonce=u5b3cknae3me0&continue=https://doc-0o-10-docs.googleusercontent.com/docs/securesc/982i0dtbpadt3gi2r3e0dv3fcd4m3h5s/14tfa9on1o8os4op4crurucm22d6b3e9/1585160775000/11942915207723510126/08110803116397861530Z/1EEtkb5KpKvFDv15dKAJJ2b8nMzvL5X7i?e%3Ddownload&hash=d8mddprte6ja0dq3fbhsbbqri95m5q43]
E: P3P: [CP="This is not a P3P policy! See http://www.google.com/support/accounts/answer/151657?hl=en for more info."]
E: Server: [UploadServer]
E: Set-Cookie: [AUTH_o55boj5jhr837nk4b632d8dgk8qk2pg3_nonce=u5b3cknae3me0; Domain=doc-0o-10-docs.googleusercontent.com; Expires=Wed, 25-Mar-2020 18:37:25 GMT; Path=/docs/securesc/982i0dtbpadt3gi2r3e0dv3fcd4m3h5s; Secure; SameSite=none; HttpOnly]
E: X-Android-Received-Millis: [1585160842789]
E: X-Android-Response-Source: [NETWORK 302]
E: X-Android-Selected-Protocol: [http/1.1]
E: X-Android-Sent-Millis: [1585160842444]
E: X-GUploader-UploadID: [AEnB2UrDb7f9V-fsLRr-hLfFPXWRIlnJQnNKygltF8jmblnXXbHdLGOHl25hFGwR4BE9HE2o7dxXJ1-5Xhz_Z2nPEYW9_nMAOD4mVF2w7KwMCIQCmRMqLBk]
E: ==============
E: null: [HTTP/1.1 302 Found]
E: Alt-Svc: [quic=":443"; ma=2592000; v="46,43",h3-Q050=":443"; ma=2592000,h3-Q049=":443"; ma=2592000,h3-Q048=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,h3-T050=":443"; ma=2592000]
E: Cache-Control: [no-cache, no-store, max-age=0, must-revalidate]
E: Content-Length: [0]
E: Content-Security-Policy: [script-src 'nonce-eIIRCgsSjg+zsoz57MhNxg' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentSignerHttp/cspreport;worker-src 'self']
E: Content-Type: [application/binary]
E: Date: [Wed, 25 Mar 2020 18:27:26 GMT]
E: Expires: [Mon, 01 Jan 1990 00:00:00 GMT]
E: Location: [https://doc-0o-10-docs.googleusercontent.com/docs/securesc/982i0dtbpadt3gi2r3e0dv3fcd4m3h5s/14tfa9on1o8os4op4crurucm22d6b3e9/1585160775000/11942915207723510126/08110803116397861530Z/1EEtkb5KpKvFDv15dKAJJ2b8nMzvL5X7i?e=download&nonce=u5b3cknae3me0&user=*&hash=clcsre6jcpeid8mmtqbco6rd28s439aa]
E: Pragma: [no-cache]
E: Server: [ESF]
E: Strict-Transport-Security: [max-age=31536000]
E: X-Android-Received-Millis: [1585160844022]
E: X-Android-Response-Source: [NETWORK 302]
E: X-Android-Selected-Protocol: [http/1.1]
E: X-Android-Sent-Millis: [1585160843023]
E: X-Content-Type-Options: [nosniff]
E: X-Frame-Options: [SAMEORIGIN]
E: X-XSS-Protection: [0]
E: ==============
E: null: [HTTP/1.1 302 Found]
E: Access-Control-Allow-Credentials: [false]
E: Access-Control-Allow-Headers: [Accept, Accept-Language, Authorization, Cache-Control, Content-Disposition, Content-Encoding, Content-Language, Content-Length, Content-MD5, Content-Range, Content-Type, Date, GData-Version, google-cloud-resource-prefix, Host, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, Origin, OriginToken, Pragma, Range, Slug, Transfer-Encoding, Want-Digest, x-chrome-connected, X-ClientDetails, X-Client-Version, X-Firebase-Locale, X-Goog-Firebase-Installations-Auth, X-Firebase-Client, X-Firebase-Client-Log-Type, X-GData-Client, X-GData-Key, X-GoogApps-Allowed-Domains, X-Goog-AdX-Buyer-Impersonation, X-Goog-Api-Client, X-Goog-AuthUser, x-goog-ext-124712974-jspb, x-goog-ext-259736195-jspb, X-Goog-PageId, X-Goog-Encode-Response-If-Executable, X-Goog-Correlation-Id, X-Goog-Request-Info, X-Goog-Request-Reason, X-Goog-Experiments, x-goog-iam-authority-selector, x-goog-iam-authorization-token, X-Goog-Spatula, X-Goog-Travel-Bgr, X-Goog-Travel-Settings, X-Goog-Upload-Command, X-Goog-Upload-Content-Disposition, X-Goog-Upload-Content-Length, X-Goog-Upload-Content-Type, X-Goog-Upload-File-Name, X-Goog-Upload-Header-Content-Length, X-Goog-Upload-Offset, X-Goog-Upload-Protocol, x-goog-user-project, X-Goog-Visitor-Id, X-Goog-FieldMask, X-Google-Project-Override, X-Goog-Api-Key, X-HTTP-Method-Override, X-JavaScript-User-Agent, X-Pan-Versionid, X-Proxied-User-IP, X-Origin, X-Referer, X-Requested-With, X-Stadia-Client-Context, X-Upload-Content-Length, X-Upload-Content-Type, X-Use-HTTP-Status-Code-Override, X-Ios-Bundle-Identifier, X-Android-Package, X-Ariane-Xsrf-Token, X-YouTube-VVT, X-YouTube-Page-CL, X-YouTube-Page-Timestamp, X-Goog-Meeting-Botguardid, X-Goog-Meeting-Debugid, X-Goog-Meeting-Token, X-Client-Data, X-Sfdc-Authorization, MIME-Version, Content-Transfer-Encoding, X-Earth-Engine-App-ID-Token, X-Earth-Engine-Computation-Profile, X-Earth-Engine-Computation-Profiling, X-Play-Console-Experiments-Override, X-Play-Console-Session-Id]
E: Access-Control-Allow-Methods: [GET,OPTIONS]
E: Access-Control-Allow-Origin: [*]
E: Alt-Svc: [quic=":443"; ma=2592000; v="46,43",h3-Q050=":443"; ma=2592000,h3-Q049=":443"; ma=2592000,h3-Q048=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,h3-T050=":443"; ma=2592000]
E: Cache-Control: [private, max-age=0]
E: Content-Length: [0]
E: Content-Type: [text/html; charset=UTF-8]
E: Date: [Wed, 25 Mar 2020 18:27:27 GMT]
E: Expires: [Wed, 25 Mar 2020 18:27:27 GMT]
E: Location: [https://docs.google.com/nonceSigner?nonce=ag2tasm726e4u&continue=https://doc-0o-10-docs.googleusercontent.com/docs/securesc/982i0dtbpadt3gi2r3e0dv3fcd4m3h5s/14tfa9on1o8os4op4crurucm22d6b3e9/1585160775000/11942915207723510126/08110803116397861530Z/1EEtkb5KpKvFDv15dKAJJ2b8nMzvL5X7i?e%3Ddownload%26nonce%3Du5b3cknae3me0%26user%3D*%26hash%3Dclcsre6jcpeid8mmtqbco6rd28s439aa&hash=2mq8p413egnfrm19ave5pq5j7k3b2pkh]
E: P3P: [CP="This is not a P3P policy! See http://www.google.com/support/accounts/answer/151657?hl=en for more info."]
E: Server: [UploadServer]
E: Set-Cookie: [AUTH_o55boj5jhr837nk4b632d8dgk8qk2pg3_nonce=ag2tasm726e4u; Domain=doc-0o-10-docs.googleusercontent.com; Expires=Wed, 25-Mar-2020 18:37:27 GMT; Path=/docs/securesc/982i0dtbpadt3gi2r3e0dv3fcd4m3h5s; Secure; SameSite=none; HttpOnly]
E: X-Android-Received-Millis: [1585160844309]
E: X-Android-Response-Source: [NETWORK 302]
E: X-Android-Selected-Protocol: [http/1.1]
E: X-Android-Sent-Millis: [1585160844044]
E: X-GUploader-UploadID: [AEnB2UqYBTxlzfa7CgVZZvVowKV-GdPwxOQ8cx1JKsT0-pTwncC3Lo8_bx-TIuNuTp-qBQSLiFuRqRmmSqjWKb_gsrjDCSraBg]
E: ==============
E: null: [HTTP/1.1 302 Found]
E: Alt-Svc: [quic=":443"; ma=2592000; v="46,43",h3-Q050=":443"; ma=2592000,h3-Q049=":443"; ma=2592000,h3-Q048=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,h3-T050=":443"; ma=2592000]
E: Cache-Control: [no-cache, no-store, max-age=0, must-revalidate]
E: Content-Length: [0]
E: Content-Security-Policy: [script-src 'nonce-zAuXTbazNgrSR5IvIxa8fA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DriveUntrustedContentSignerHttp/cspreport;worker-src 'self']
E: Content-Type: [application/binary]
E: Date: [Wed, 25 Mar 2020 18:27:27 GMT]
E: Expires: [Mon, 01 Jan 1990 00:00:00 GMT]
E: Location: [https://doc-0o-10-docs.googleusercontent.com/docs/securesc/982i0dtbpadt3gi2r3e0dv3fcd4m3h5s/14tfa9on1o8os4op4crurucm22d6b3e9/1585160775000/11942915207723510126/08110803116397861530Z/1EEtkb5KpKvFDv15dKAJJ2b8nMzvL5X7i?e=download&nonce=ag2tasm726e4u&user=*&hash=5h9i8gvnr6j0ufpd4ldtds8jokofda4s]
E: Pragma: [no-cache]
E: Server: [ESF]
E: Strict-Transport-Security: [max-age=31536000]
E: X-Android-Received-Millis: [1585160844556]
E: X-Android-Response-Source: [NETWORK 302]
E: X-Android-Selected-Protocol: [http/1.1]
E: X-Android-Sent-Millis: [1585160844329]
E: X-Content-Type-Options: [nosniff]
E: X-Frame-Options: [SAMEORIGIN]
E: X-XSS-Protection: [0]
E: ==============
E: null: [HTTP/1.1 302 Found]
E: Access-Control-Allow-Credentials: [false]
E: Access-Control-Allow-Headers: [Accept, Accept-Language, Authorization, Cache-Control, Content-Disposition, Content-Encoding, Content-Language, Content-Length, Content-MD5, Content-Range, Content-Type, Date, GData-Version, google-cloud-resource-prefix, Host, If-Match, If-Modified-Since, If-None-Match, If-Unmodified-Since, Origin, OriginToken, Pragma, Range, Slug, Transfer-Encoding, Want-Digest, x-chrome-connected, X-ClientDetails, X-Client-Version, X-Firebase-Locale, X-Goog-Firebase-Installations-Auth, X-Firebase-Client, X-Firebase-Client-Log-Type, X-GData-Client, X-GData-Key, X-GoogApps-Allowed-Domains, X-Goog-AdX-Buyer-Impersonation, X-Goog-Api-Client, X-Goog-AuthUser, x-goog-ext-124712974-jspb, x-goog-ext-259736195-jspb, X-Goog-PageId, X-Goog-Encode-Response-If-Executable, X-Goog-Correlation-Id, X-Goog-Request-Info, X-Goog-Request-Reason, X-Goog-Experiments, x-goog-iam-authority-selector, x-goog-iam-authorization-token, X-Goog-Spatula, X-Goog-Travel-Bgr, X-Goog-Travel-Settings, X-Goog-Upload-Command, X-Goog-Upload-Content-Disposition, X-Goog-Upload-Content-Length, X-Goog-Upload-Content-Type, X-Goog-Upload-File-Name, X-Goog-Upload-Header-Content-Length, X-Goog-Upload-Offset, X-Goog-Upload-Protocol, x-goog-user-project, X-Goog-Visitor-Id, X-Goog-FieldMask, X-Google-Project-Override, X-Goog-Api-Key, X-HTTP-Method-Override, X-JavaScript-User-Agent, X-Pan-Versionid, X-Proxied-User-IP, X-Origin, X-Referer, X-Requested-With, X-Stadia-Client-Context, X-Upload-Content-Length, X-Upload-Content-Type, X-Use-HTTP-Status-Code-Override, X-Ios-Bundle-Identifier, X-Android-Package, X-Ariane-Xsrf-Token, X-YouTube-VVT, X-YouTube-Page-CL, X-YouTube-Page-Timestamp, X-Goog-Meeting-Botguardid, X-Goog-Meeting-Debugid, X-Goog-Meeting-Token, X-Client-Data, X-Sfdc-Authorization, MIME-Version, Content-Transfer-Encoding, X-Earth-Engine-App-ID-Token, X-Earth-Engine-Computation-Profile, X-Earth-Engine-Computation-Profiling, X-Play-Console-Experiments-Override, X-Play-Console-Session-Id]
E: Access-Control-Allow-Methods: [GET,OPTIONS]
E: Access-Control-Allow-Origin: [*]
E: Alt-Svc: [quic=":443"; ma=2592000; v="46,43",h3-Q050=":443"; ma=2592000,h3-Q049=":443"; ma=2592000,h3-Q048=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,h3-T050=":443"; ma=2592000]
E: Cache-Control: [private, max-age=0]
E: Content-Length: [0]
E: Content-Type: [text/html; charset=UTF-8]
E: Date: [Wed, 25 Mar 2020 18:27:27 GMT]
E: Expires: [Wed, 25 Mar 2020 18:27:27 GMT]
E: Location: [https://docs.google.com/nonceSigner?nonce=u5lmh441g03ho&continue=https://doc-0o-10-docs.googleusercontent.com/docs/securesc/982i0dtbpadt3gi2r3e0dv3fcd4m3h5s/14tfa9on1o8os4op4crurucm22d6b3e9/1585160775000/11942915207723510126/08110803116397861530Z/1EEtkb5KpKvFDv15dKAJJ2b8nMzvL5X7i?e%3Ddownload%26nonce%3Dag2tasm726e4u%26user%3D*%26hash%3D5h9i8gvnr6j0ufpd4ldtds8jokofda4s&hash=a482c6a7mv671r1gpba00ga2pi7j3eoc]
E: P3P: [CP="This is not a P3P policy! See http://www.google.com/support/accounts/answer/151657?hl=en for more info."]
E: Server: [UploadServer]
E: Set-Cookie: [AUTH_o55boj5jhr837nk4b632d8dgk8qk2pg3_nonce=u5lmh441g03ho; Domain=doc-0o-10-docs.googleusercontent.com; Expires=Wed, 25-Mar-2020 18:37:27 GMT; Path=/docs/securesc/982i0dtbpadt3gi2r3e0dv3fcd4m3h5s; Secure; SameSite=none; HttpOnly]
E: X-Android-Received-Millis: [1585160844827]
E: X-Android-Response-Source: [NETWORK 302]
E: X-Android-Selected-Protocol: [http/1.1]
E: X-Android-Sent-Millis: [1585160844579]
E: X-GUploader-UploadID: [AEnB2UrcXatoHrnDGK9EsdAv8LxFSp_TjaufEkojKHBs5DNNQUg9ENgCAbL35GKXFby9-jxzUI5AI5s2tXoGFKw3ZjJx8-pScK9mMynwsGPdkOd43Z70FTI]
E: ==============
KaKi87 commented 4 years ago

Hello, @proninyaroslav any news on this ? Thanks !

proninyaroslav commented 4 years ago

@KaKi87 Hi. In the current state, we managed to fix this by opening GDrive in the Navi Browser https://github.com/TachibanaGeneralLaboratories/download-navi/commit/468552f758ebd43ae3c8e71f403d524517ee0aa5. In this case, the browser sends the correct cookies. If I open the link directly in Navi or from another browser (links like doc-0g-6s-docs.googleusercontent.com ...), I don't have the correct cookies.

ghost commented 4 years ago

This is weird, it seems it depends on the browser you use to copy the link, in some browser if copy the link to download navi it downloads in other it will give too many redirects. plus i tried it with other browser without cookies and its working.

ghost commented 4 years ago

This is interesting,Adm also not downloading copied link but one thing i notice both adm and DownloadNavi downloads google drive files containing (*).

  1. https://doc-0c-4s-docs.googleusercontent.com/docs/securesc/ha0ro937gcuc7l7deffksulhg5h7mbp1/p7qksjvm1uc97qbe7u8unu44vuqhpigu/1599295575000/11926613899836067221/*/0BwrwUDaqKlqNV2dsbjB6eHhBMlE?e=download the above can be download by coping the link from other browser but it has timeout,i don't know the exact

  2. https://doc-0g-bg-docs.googleusercontent.com/docs/securesc/aq7e699g8famhm3bt4v95f80rj3bk6cb/7ba2bhs85b8ca05d1c4oi8e9h12tfi8l/1599295800000/11926613899836067221/06672899507113348516Z/0BwrwUDaqKlqNV2dsbjB6eHhBMlE?e=download&hash=t1c0e95c9a3r276ad995cf42644vrtlc&nonce=r07qljnek8i9g&user=06672899507113348516Z both adm and DownloadNavi download this from thier browser but not copied from other browser