search

toncenter / ton-wallet

Web Wallet and Browser Extension for TON (The Open Network)
https://wallet.ton.org
GNU General Public License v3.0
190 stars 70 forks source link

Origin not allowed. #176

Open bryanForSafe opened 2 years ago

bryanForSafe commented 2 years ago

Bug Type

Other

Reproduction steps

{"ok":false,"result":"","error":"Origin not allowed.","code":403}

Actual result

curl 'https://toncenter.com/api/v2/jsonRPC' \ -H 'authority: toncenter.com' \ -H 'accept: /' \ -H 'accept-language: zh-CN,zh;q=0.9' \ -H 'content-type: application/json' \ -H 'origin: chrome-extension://ohnfhejmlbgfcaleomkkgobafamppeef' \ -H 'sec-fetch-dest: empty' \ -H 'sec-fetch-mode: cors' \ -H 'sec-fetch-site: none' \ -H 'user-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36' \ -H 'x-api-key: 503af517296765c3f1729fcb301b063a00650a50a881eeaddb6307d5d45e21aa' \ --data-raw '{"id":1,"jsonrpc":"2.0","method":"getWalletInformation","params":{"address":"EQAW1JB9u8zrjEVf22jwogzSZTCYaUaT1xcWXHDKIFe9EEPm"}}' \ --compressed {"ok":false,"result":"","error":"Origin not allowed.","code":403}

Expected result

?

Suggested Severity

High

Device

Desktop (please complete the following information):

Smartphone (please complete the following information):

Additional Context

No response