Need to see if your shared folder is taking up space on your dropbox 👨💻? Find out how to check here.
Forum Discussion
Shared File Link Issues
Hi,
I'm writing to find out if anyone knows of any changes to the Drop Box service around 2/9, 2/10 that may have changed how file information is shared when using the Shared Link. For con...
Sorry about that... So here's a working HEAD request that returns 200 for us with another Shared Image File:
- Request Headers:
- Accept:"*/*"
- cache-control:"no-cache"
- User-Agent:"PostmanRuntime/7.6.0"
- Host:"upload.wikimedia.org"
- accept-encoding:"gzip, deflate"
- content-length:""
- Request Headers:
- Response Headers:
- Date:"Mon, 14 Feb 2022 19:56:24 GMT"
- Content-Type:"image/gif"
- Content-Length:"1789"
- X-Object-Meta-Sha1Base36:"j46h21owxa5nvjxzmreodh4vr4rw2a7"
- Last-Modified:"Sun, 06 Oct 2013 15:18:28 GMT"
- Etag:"792456dc6ed5053432e53ea1aaa2a444"
- X-Timestamp:"1381072707.29367"
- Server:"ATS/8.0.8"
- Age:"105"
- X-Cache:"cp1082 miss, cp1086 hit/1"
- X-Cache-Status:"hit-front"
- Server-Timing:"cache;desc="hit-front", host;desc="cp1086""
- Strict-Transport-Security:"max-age=106384710; includeSubDomains; preload"
- Report-To:"{ "group": "wm_nel", "max_age": 86400, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }"
- NEL:"{ "report_to": "wm_nel", "max_age": 86400, "failure_fraction": 0.05, "success_fraction": 0.0}"
- Permissions-Policy:"interest-cohort=()"
- X-Client-IP:"72.38.236.99"
- Access-Control-Allow-Origin:"*"
- Access-Control-Expose-Headers:"Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache"
- Timing-Allow-Origin:"*"
- Accept-Ranges:"bytes"
- Connection:"keep-alive"
And here's what we're getting with the same request to dropbox:
Pretty
Raw
- Request Headers:
- Accept:"*/*"
- cache-control:"no-cache"
- User-Agent:"PostmanRuntime/7.6.0"
- Host:"www.dropbox.com"
- cookie:"t=VJO2c4CRFqZizRnH5eTAtdBa; locale=en; gvc=MjQyOTU1MzM4NDQ2MzQzNzgzNjAzMTEwODgzMDY2OTExMDM0NTE5; __Host-js_csrf=VJO2c4CRFqZizRnH5eTAtdBa"
- accept-encoding:"gzip, deflate"
- content-length:""
- Response Headers:
- Cache-Control:"no-cache,no-cache, no-store"
- Content-Security-Policy:"base-uri 'self' ; child-src https://www.dropbox.com/static/serviceworker/ blob: ; connect-src https://* ws://127.0.0.1:*/ws ; default-src https://www.dropbox.com/playlist/ https://www.dropbox.com/v/s/playlist/ https://*.dropboxusercontent.com/p/hls_master_playlist/ https://*.dropboxusercontent.com/p/hls_playlist/ ; font-src https://* data: ; form-action 'self' https://www.dropbox.com/ https://dl-web.dropbox.com/ https://photos.dropbox.com/ https://paper.dropbox.com/ https://showcase.dropbox.com/ https://www.hellofax.com/ https://app.hellofax.com/ https://www.hellosign.com/ https://app.hellosign.com/ https://docsend.com/ https://www.docsend.com/ https://help.dropbox.com/ https://navi.dropbox.jp/ https://selfguidedlearning.dropboxbusiness.com/ https://instructorledlearning.dropboxbusiness.com/ https://sales.dropboxbusiness.com/ https://dropboxconnect.co.uk/ https://accounts.google.com/ https://api.login.yahoo.com/ https://login.yahoo.com/ https://experience.dropbox.com/ https://pal-test.adyen.com https://2e83413d8036243b-Dropbox-pal-live.adyenpayments.com/ ; frame-src https://* carousel: dbapi-6: dbapi-7: dbapi-8: dropbox-client: itms-apps: itms-appss: ; img-src https://* data: blob: ; media-src https://* blob: ; object-src 'self' https://cfl.dropboxstatic.com/static/ https://www.dropboxstatic.com/static/ ; report-uri https://www.dropbox.com/csp_log?policy_name=metaserver-whitelist ; script-src 'unsafe-eval' https://www.dropbox.com/static/api/ https://www.dropbox.com/page_success/ https://cfl.dropboxstatic.com/static/js/ https://www.dropboxstatic.com/static/js/ https://cfl.dropboxstatic.com/static/src/dws-ensemble-appshell/ https://www.dropboxstatic.com/static/src/dws-ensemble-appshell/ https://cfl.dropboxstatic.com/static/previews/ https://www.dropboxstatic.com/static/previews/ https://cfl.dropboxstatic.com/static/api/ https://www.dropboxstatic.com/static/api/ https://cfl.dropboxstatic.com/static/cms/ https://www.dropboxstatic.com/static/cms/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-inline' ; style-src https://* 'unsafe-inline' 'unsafe-eval' ; worker-src https://www.dropbox.com/static/serviceworker/ blob:"
- Referrer-Policy:"strict-origin-when-cross-origin"
- Set-Cookie:"__Host-logged-out-session=ChDNFjzU5Y3hv+wpzLJmOiR8ELTpqpAGGi5BQ2NhMWdvc01HbXBJZ3JrcmZUempOT1c4RU54dUR3RE80TzF0U0VSMXdrYUNR; HttpOnly; Path=/; Secure"
- X-Content-Type-Options:"nosniff"
- X-Frame-Options:"DENY"
- X-Permitted-Cross-Domain-Policies:"none"
- X-Robots-Tag:"noindex, nofollow, noimageindex"
- X-Xss-Protection:"1; mode=block"
- Content-Type:"text/html; charset=utf-8"
- Accept-Encoding:"identity,gzip"
- Date:"Mon, 14 Feb 2022 19:59:48 GMT"
- Server:"envoy"
- Strict-Transport-Security:
- 0:"max-age=31536000; includeSubDomains"
- 1:"max-age=31536000; includeSubDomains"
- 2:"max-age=31536000; includeSubDomains; preload"
- Content-Encoding:"gzip"
- Vary:"Accept-Encoding"
- X-Dropbox-Response-Origin:"far_remote"
- X-Dropbox-Request-Id:"3a7e948775e741d4a99ff8e892df2668"
- Transfer-Encoding:"chunked"
Or with DL=1 (no response):
Pretty
Raw
HEAD /s/6djz4es56yb5k1b/SelfExamCardInside.jpg
Accept: */*
cache-control: no-cache
Hi mbvistaprint,
Hah... 😁 One more bug... 🤷 It's definitely not the same like the one I linked to before.
Here as far as I can see Dropbox server gets confused from Accept-Encoding header. You haven't posted you query, but most probably there your web client pushed all supported encodings. What seems confusing to Dropbox (I have no idea why - just bug). Let's hope that will get solved soon.
You can workaround (temporary, at least) by putting within your request a header like:
Accept-Encoding: identity
That's it. 😉
Good luck.
Greg-DB, I have no idea what's going on, but such bugs are "raining" one after other!? Maybe it's asking better QA... 🧐
Edit: mbvistaprint my error. You have posted it. And as expected:
mbvistaprint wrote:
...
- accept-encoding:"gzip, deflate"
...
Force replace it! 😉
Thank you Здравко
That definitely got us something. 🙂 So using the identity encoding with the dl=1 url we get back a response at least. However, I'm still not seeing any "content-length"... It's just empty.... though I do see a "X-Dropbox-Content-Length: 4006971" which looks like it's probably the right value... it's just being provided in the way we're expecting.
HEAD /s/6djz4es56yb5k1b/SelfExamCardInside.jpgAccept: */*Accept-Encoding: identitycache-control: no-cacheUser-Agent: PostmanRuntime/7.6.0cookie: t=VJO2c4CRFqZizRnH5eTAtdBa; locale=en; gvc=MjQyOTU1MzM4NDQ2MzQzNzgzNjAzMTEwODgzMDY2OTExMDM0NTE5; __Host-js_csrf=VJO2c4CRFqZizRnH5eTAtdBa; __Host-logged-out-session=ChDNFjzU5Y3hv+wpzLJmOiR8ELTpqpAGGi5BQ2NhMWdvc01HbXBJZ3JrcmZUempOT1c4RU54dUR3RE80TzF0U0VSMXdrYUNRcontent-length:HTTP/1.1 200status: 200Accept-Ranges: bytesCache-Control: max-age=60Content-Disposition: attachment; filename="SelfExamCardInside.jpg"; filename*=UTF-8''SelfExamCardInside.jpgContent-Security-Policy: sandboxEtag: 1627768410839975dPragma: publicReferrer-Policy: no-referrerVary: Origin, Accept-EncodingX-Content-Security-Policy: sandboxX-Content-Type-Options: nosniffX-Dropbox-Content-Length: 4006971X-Robots-Tag: noindex, nofollow, noimageindexX-Robots-Tag: noindex, nofollow, noimageindexX-Server-Response-Time: 21X-Webkit-Csp: sandboxContent-Type: application/jsonAccept-Encoding: identity,gzipDate: Mon, 14 Feb 2022 21:32:54 GMTServer: envoyStrict-Transport-Security: max-age=31536000; includeSubDomains; preloadX-Dropbox-Response-Origin: far_remoteX-Dropbox-Request-Id: 0ae641141a2b4668a508979c25c6bd29Transfer-Encoding: chunked-Melissa
About Dropbox API Support & Feedback
Find help with the Dropbox API from other developers.
