<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: Violation of RFC2616 on some of the Dropbox servers in relation to authentication page in Dropbox API Support &amp; Feedback</title>
    <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/572325#M26724</link>
    <description>&lt;P&gt;Thanks for the detailed report! I'm raising this with the team. I'll follow up here once I have an update on this.&lt;/P&gt;</description>
    <pubDate>Fri, 21 Jan 2022 16:48:46 GMT</pubDate>
    <dc:creator>Greg-DB</dc:creator>
    <dc:date>2022-01-21T16:48:46Z</dc:date>
    <item>
      <title>Violation of RFC2616 on some of the Dropbox servers in relation to authentication page</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/572139#M26721</link>
      <description>&lt;P&gt;Hello,&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;Since 19th of January 2022 the Dropbox backend servers have started to respond differently to the HTTP request to&amp;nbsp;&lt;A href="https://www.dropbox.com/oauth2/authorize?client_id=[censored]" target="_blank" rel="noopener"&gt;https://www.dropbox.com/oauth2/authorize?client_id=[censored]&lt;/A&gt;&amp;nbsp;- at least some (if not all) of the servers responding add the header:&lt;/P&gt;&lt;P&gt;"Content-Encoding: br"&lt;/P&gt;&lt;P&gt;... i.e. utilize the br-compression for the returned response, even if the requesting client has set only:&lt;/P&gt;&lt;P&gt;“Accept-encoding: gzip, deflate”&lt;/P&gt;&lt;P&gt;Based on RFC 2616, server should obey the guidance given by the client on supported transfer-encodings.&lt;/P&gt;&lt;P&gt;In practice, this makes the login page access fail for clients (browsers) which do not have the "br" support enabled or supported.&lt;/P&gt;&lt;P&gt;The content which seems to use br compression always is coming from the server &lt;A href="https://cfl.dropboxstatic.com/static/css" target="_blank" rel="noopener"&gt;https://cfl.dropboxstatic.com/static/css&lt;/A&gt;&amp;nbsp;- which are refered by the dropbox.com main login page.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;This is a problem for a device in market currently, all new Dropbox logins fail.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;Can you please see that the backend servers would work as IETF RFCs dictate - i.e. if client does not promote support for br encoding, do not force it.&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;&lt;P&gt;Thank you and best regards,&lt;/P&gt;&lt;P&gt;Miikka&lt;/P&gt;&lt;P&gt;&amp;nbsp;&lt;/P&gt;</description>
      <pubDate>Fri, 21 Jan 2022 07:30:30 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/572139#M26721</guid>
      <dc:creator>Miikka</dc:creator>
      <dc:date>2022-01-21T07:30:30Z</dc:date>
    </item>
    <item>
      <title>Re: Violation of RFC2616 on some of the Dropbox servers in relation to authentication page</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/572226#M26723</link>
      <description>&lt;P&gt;Hmm... &lt;img class="lia-deferred-image lia-image-emoji" src="https://www.dropboxforum.com/html/@9AD39CA637682E9616FBE31CDAF1B6C4/emoticons/1f914.png" alt=":thinking_face:" title=":thinking_face:" /&gt; Yes, that's correct. There is some misconfiguration probably.&lt;/P&gt;&lt;P&gt;Just for more reference follows example request:&lt;/P&gt;&lt;LI-CODE lang="markup"&gt;GET /static/fonts/opensans/OpenSans-Bold-webfont.ttf HTTP/2
Host: cfl.dropboxstatic.com
User-Agent: Utility
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US;q=0.7,en;q=0.3
Accept-Encoding: gzip, deflate
Origin: null
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers&lt;/LI-CODE&gt;&lt;P&gt;... and corresponding response coming from Dropbox:&lt;/P&gt;&lt;LI-CODE lang="markup"&gt;HTTP/2 200 OK
date: Fri, 21 Jan 2022 13:04:38 GMT
content-type: application/x-font-ttf
last-modified: Mon, 10 Jan 2022 18:30:05 GMT
vary: Accept-Encoding
etag: W/"61dc7b2d-2892c"
x-dropbox-request-id: b26e2c1dffc9fdf9cc92a2bb53939e94
x-content-type-options: nosniff
expires: Fri, 21 Jan 2022 15:51:03 GMT
cache-control: max-age=86400
access-control-allow-origin: *
timing-allow-origin: https://www.dropbox.com
content-encoding: br
cf-cache-status: HIT
age: 73841
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
server: cloudflare
cf-ray: 6d10bfe0cd898ef3-SOF
X-Firefox-Spdy: h2&lt;/LI-CODE&gt;&lt;P&gt;🤷 Technical support staff should fix this!&lt;/P&gt;</description>
      <pubDate>Fri, 21 Jan 2022 13:16:11 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/572226#M26723</guid>
      <dc:creator>Здравко</dc:creator>
      <dc:date>2022-01-21T13:16:11Z</dc:date>
    </item>
    <item>
      <title>Re: Violation of RFC2616 on some of the Dropbox servers in relation to authentication page</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/572325#M26724</link>
      <description>&lt;P&gt;Thanks for the detailed report! I'm raising this with the team. I'll follow up here once I have an update on this.&lt;/P&gt;</description>
      <pubDate>Fri, 21 Jan 2022 16:48:46 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/572325#M26724</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2022-01-21T16:48:46Z</dc:date>
    </item>
    <item>
      <title>Re: Violation of RFC2616 on some of the Dropbox servers in relation to authentication page</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/573533#M26759</link>
      <description>&lt;P&gt;This should be working properly again now. Please let us know if you're still seeing any issues. Thanks!&lt;/P&gt;</description>
      <pubDate>Wed, 26 Jan 2022 15:37:47 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/573533#M26759</guid>
      <dc:creator>Greg-DB</dc:creator>
      <dc:date>2022-01-26T15:37:47Z</dc:date>
    </item>
    <item>
      <title>Re: Violation of RFC2616 on some of the Dropbox servers in relation to authentication page</title>
      <link>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/573542#M26760</link>
      <description>&lt;P&gt;&lt;img class="lia-deferred-image lia-image-emoji" src="https://www.dropboxforum.com/html/@D88F213CAFB196B6AB70612B08AD9D31/emoticons/1f601.png" alt=":beaming_face_with_smiling_eyes:" title=":beaming_face_with_smiling_eyes:" /&gt; Good workaround! GZIP or nothing... &lt;img class="lia-deferred-image lia-image-emoji" src="https://www.dropboxforum.com/html/@FBF7D2AB59A0D6E861EBF6A36F93B7E2/emoticons/1f642.png" alt=":slightly_smiling_face:" title=":slightly_smiling_face:" /&gt; Better than before. Matches the specification at least. &lt;img class="lia-deferred-image lia-image-emoji" src="https://www.dropboxforum.com/html/@41457EF40051AFF130FDBFE21B496926/emoticons/1f609.png" alt=":winking_face:" title=":winking_face:" /&gt;&lt;/P&gt;</description>
      <pubDate>Wed, 26 Jan 2022 15:55:19 GMT</pubDate>
      <guid>https://www.dropboxforum.com/t5/Dropbox-API-Support-Feedback/Violation-of-RFC2616-on-some-of-the-Dropbox-servers-in-relation/m-p/573542#M26760</guid>
      <dc:creator>Здравко</dc:creator>
      <dc:date>2022-01-26T15:55:19Z</dc:date>
    </item>
  </channel>
</rss>

