Open yegor256 opened 5 years ago
@yegor256 Note that it's not whenever Referer
header is present, but whenever it is present and it doesn't match with whatever's in the Host
header. At least that is my assumption, since I can't reliably check because of HTTPS throwing a certificate error when I change the Host
, and the alternative to it checking with the Host
header is having the proper domain in the code, or in the environment variables.
@0crat assign @golyalpha
@golyalpha I would suggest to create a new test method in test_front.rb
and try to reproduce the issue. Then find a way to fix it.
@yegor256 Thanks for the suggestion, will do.
@yegor256 I can't seem to find the endpoint for /rate.json I know this is likely an issue relating to all endpoints, but, how would you like me to proceed?
@0crat waiting on response
When
Referer
HTTP header is present in the request, the response is always 403. Why? Let's create a unit test to reproduce the problem, and fix it.