Open jon-betts opened 3 years ago
It's unclear to me from this ticket (and the linked spike https://github.com/hypothesis/via/issues/405) why we should create a new Python endpoint to proxy Google Drive PDFs using OAuth-based authentication, instead of our NGINX endpoint's current API key-based authentication? Presumably we think that would make the 403 Your computer or network may be sending automated queries
error pages from Google go away. But why do we think it will do that?
The conclusions of this spike:
Vary: Origin
,Vary: X-Origin
headersRecommendations:
Notes