Open bryanForSafe opened 2 years ago
Other
{"ok":false,"result":"","error":"Origin not allowed.","code":403}
curl 'https://toncenter.com/api/v2/jsonRPC' \ -H 'authority: toncenter.com' \ -H 'accept: /' \ -H 'accept-language: zh-CN,zh;q=0.9' \ -H 'content-type: application/json' \ -H 'origin: chrome-extension://ohnfhejmlbgfcaleomkkgobafamppeef' \ -H 'sec-fetch-dest: empty' \ -H 'sec-fetch-mode: cors' \ -H 'sec-fetch-site: none' \ -H 'user-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36' \ -H 'x-api-key: 503af517296765c3f1729fcb301b063a00650a50a881eeaddb6307d5d45e21aa' \ --data-raw '{"id":1,"jsonrpc":"2.0","method":"getWalletInformation","params":{"address":"EQAW1JB9u8zrjEVf22jwogzSZTCYaUaT1xcWXHDKIFe9EEPm"}}' \ --compressed {"ok":false,"result":"","error":"Origin not allowed.","code":403}
?
High
Desktop (please complete the following information):
Smartphone (please complete the following information):
No response
Bug Type
Other
Reproduction steps
{"ok":false,"result":"","error":"Origin not allowed.","code":403}
Actual result
curl 'https://toncenter.com/api/v2/jsonRPC' \ -H 'authority: toncenter.com' \ -H 'accept: /' \ -H 'accept-language: zh-CN,zh;q=0.9' \ -H 'content-type: application/json' \ -H 'origin: chrome-extension://ohnfhejmlbgfcaleomkkgobafamppeef' \ -H 'sec-fetch-dest: empty' \ -H 'sec-fetch-mode: cors' \ -H 'sec-fetch-site: none' \ -H 'user-agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/105.0.0.0 Safari/537.36' \ -H 'x-api-key: 503af517296765c3f1729fcb301b063a00650a50a881eeaddb6307d5d45e21aa' \ --data-raw '{"id":1,"jsonrpc":"2.0","method":"getWalletInformation","params":{"address":"EQAW1JB9u8zrjEVf22jwogzSZTCYaUaT1xcWXHDKIFe9EEPm"}}' \ --compressed {"ok":false,"result":"","error":"Origin not allowed.","code":403}
Expected result
?
Suggested Severity
High
Device
Desktop (please complete the following information):
Smartphone (please complete the following information):
Additional Context
No response