It looks like the ajax requests are missing some parameters #28
Replies: 3 comments
-
|
It seems like the h parameter is a csrfToken that can be retrieved from the window.Game object. |
Beta Was this translation helpful? Give feedback.
-
|
Never mind. I think that the gpAjax that you're using does all of that work. |
Beta Was this translation helpful? Give feedback.
-
|
Hi, Yeah the one that I'm using send automatically all the informations that the grepolis back end need to authenticate the user. Not sending the h token would result in and error, it's used to prevent cross origin attacks and it's checked on every request Let me know if you have other questions ;) |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
Hello! Whenever you do some actions in the browser, there are two parameters, h and _ which also send some data to the back-end server. h seems to be an md5 hash of something, and _ is the timestamp of the action. Do you have an idea of the consequences of not sending these parameters? (while using the bot)
Beta Was this translation helpful? Give feedback.
All reactions