Where are the exposed headers informing my Rate Limit for the Geni API?
Anytime I use the Client Side Flow to authorize my Geni app with OAuth2, I can successfully get it to authenticate me but I receive the error:
{"error":{"type":"ApiException","message":"Rate limit exceeded."}}
(I am using the endpoint https://www.geni.com/api/user/metadata?ids="[my_id]")
According to the documentation, the rate limits can be checked within the HTTP headers.
However, when I check the Response Headers within Google Chrome's Network tab, all I see is:
==Response Headers==
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, Content-Range, Content-Disposition, Content-Description, X-Requested-With, X-Prototype-Version, X-API-Rate-Limit, X-API-Rate-Remaining, X-API-Rate-Window
Access-Control-Allow-Methods: POST, GET, OPTIONS
Access-Control-Expose-Headers: Content-Type, Content-Range, Content-Disposition, Content-Description, X-Requested-With, X-Prototype-Version, X-API-Rate-Limit, X-API-Rate-Remaining, X-API-Rate-Window
So things like X-API-Rate-Window are THERE, given permission to be exposed, but they're only values instead of the keys and there are no corresponding additional headers with those names used as the keys. Therefore, I can't figure out a way to extract any useful information from them.
Can someone advise me on how to read what my remaining Rate Limit is, and how I can access metadata information without tripping it?
Thanks!
(P.S. I've posted this question to Geni's forums and have received no response which is why I am posting it here :) )
I finally resolved this. I learned about preflight requests and how that was the request whose Response Headers I was looking at before.
It turns out Geni was passing its custom headers to my main request, I just had a line of code in my own proxy PHP file that was omitting most headers.
foreach ( $header_text as $header ) {
if ( preg_match( '/^(?:Content-Type|Content-Language|Set-Cookie):/i', $header ) ) {
header( $header );
}
}
(I was using this proxy, for reference.)
When I removed that regex check from the proxy, all of the headers began appearing!
- livewire view don't send any xhr request to component
- Axios/XMLHttpRequest is sending GET instead of POST in production environment
- How to upload file to S3 without AWS JavaScript SDK?
- How to avoid "Synchronous XMLHttpRequest on the main thread" warning in UI5?
- How do I pass command line parameters to a python prgram called from XMLHTTPRequest
- How to find loading bottleneck of a slow-loading SAPUI5 app
- How to make AJAX request in Hackerrank using JavaScript?
- React Suspense within a Context
- Send POST data using XMLHttpRequest
- Change Response from HTTP Request sent by a program
- How can I get an access token Spotify API?
- XMLHTTPRequest always returns "Page not found"
- Can Service Workers respond to synchronous XHR requests?
- NFL Web Scraper HELP: NetworkError: Failed to execute 'send' on 'XMLHttpRequest': Failed to load
- @react-pdf/renderer can't use fonts when building for node
- What does it mean when an HTTP request returns status code 0?
- Django Rest Framework - Cross Origin Resquest got blocked
- Upload file to Azure Blob Storage with Microsoft.XMLHTTP with progres VBA
- How can I get the class index of a XML requested object more efficiently (as I am having problems with the current approach)?
- Access-Control-Allow-Origin Multiple Origin Domains?
- Output PHP already encode to json, and send to javascript to be json, not working
- What does "200 connection established" HTTP response status code mean?
- Proper way to catch exception from JSON.parse
- XHR Upload Progress is 100% from the start
- Understanding XMLHttpRequest over CORS (responseText)
- Easier way to transform FormData into query string
- Mixed Content The page at was loaded over HTTPS but requested an insecure resource This request has been blocked the content must be served over HTTPS
- What is different in my Ajax vs XMLHttpRequest Call that lets my Server understand Ajax but not XMLHttpRequest?
- problem with intercepting XMLHttpRequest in Chrome extension
- Origin null is not allowed by Access-Control-Allow-Origin