plus in general, if i send a xojo forum link like : https://forum.xojo.com/47470-stackview-1-06-is-now-available/0#p385354
i have a error 400, bad request
so i’m wondering in general what’s the difference when webkit sends a request to a request send by httpsocket ? do i have to send headers, user agent or something ?
thanks
[quote=387487:@Christian Schmitz]SSL version 2/3 is over 10 years old and newer servers don’t accept it any more.
Please use TLS 1.2.[/quote]
SSLv23 is actually a “negotiated” connection mode that will start with TLS and work it’s way down until it finds one that works.
My guess is that they require a user-agent header to make them think youÂ’re a browser.
yes lol just done that before seeing your messagte:), just did it it worked. i just paste into the example
“CURLS get and put web” my probematic url :
StackView 1.06 is now available! - Add-Ons - Xojo Programming Forum
this server denies connection with TLS1.0, which is the default ConnectionType. From Xojo 2017r3 onwards SSLv23 will be the most compatible one (including TLS! see <https://xojo.com/issue/49232>), otherwise use TLSv11 or TLSv12. The Error 400 is returned if you fail to prepare the URL correctly. The part starting with the Hashtag (#) must not be sent in the HTTP request, it is to be processed by the client/browser.
Yes, I’m using macOS. Most tests I do with curl from the Terminal. To mimic what the HTTPSecureSocket is doing, I start with parameters like the following:
Here does --insecure / -k disable the SNI extension, tls-max mimics the SSLv23. In my tests, --tlsv1.2 and --tlsv1.1 seem broken and imply --tlsv1.0 but --tlsv1 / -1 may be worth a try.
Further comparing the traffic a browser, curl and the Xojo Socket produces with Wireshark can help to track down several issues.