All geek questions in one place

Download via facebook HTTPS hosting iframe applications via POST

I participated in the fanpage project using the JS API, so we decided to place the site in the Amazon S3 bucket, as it is static content and b) Amazon has the SSL certificate that Facebook applications have required since October 2011.

But it turns out that instead of going HTTP GET, Facebook requests a fan page via HTTP POST (additional security check? Why are they not only for HTTP HEADERS?).

Amazon wisely sends back the following:

405 Method Not Allowed Code: MethodNotAllowed Message: The specified method is not allowed against this resource. ResourceType: OBJECT Method: POST RequestId: XXXXXXXXXXXXX HostId: XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX

... because it indicates that Facebook is trying to download via POST

The irony is that Facebook actually recommends using S3 for those who do not have an SSL certificate at http://www.facebook.com/note.php?note_id=10150223945345844

Bottom line: did anyone manage to place a fan page in the St3 block in October 2011? Is there a bucket policy that can help with this?

+6
source share
1 answer

The parameter would be to use cloudfront to specify an EC2 instance. It will be happy to accept mail requests. Just make sure you set a very long TTL timecode in your response headers to make sure the instance does not continue to receive requests. You can still post your images, etc. In s3. The EC2 exam will be responsible for translating the mail request.

+1
source

Source: https://habr.com/ru/post/909465/

More articles:


All Articles