diff --git a/functions/headers.js b/functions/headers.js new file mode 100644 index 00000000..9fbc2938 --- /dev/null +++ b/functions/headers.js @@ -0,0 +1,124 @@ +export const commonHeaders = [ + "WWW-Authenticate", + "Authorization", + "Proxy-Authenticate", + "Proxy-Authorization", + "Age", + "Cache-Control", + "Clear-Site-Data", + "Expires", + "Pragma", + "Warning", + "Accept-CH", + "Accept-CH-Lifetime", + "Early-Data", + "Content-DPR", + "DPR", + "Device-Memory", + "Save-Data", + "Viewport-Width", + "Width", + "Last-Modified", + "ETag", + "If-Match", + "If-None-Match", + "If-Modified-Since", + "If-Unmodified-Since", + "Vary", + "Connection", + "Keep-Alive", + "Accept", + "Accept-Charset", + "Accept-Encoding", + "Accept-Language", + "Expect", + "Max-Forwards", + "Cookie", + "Set-Cookie", + "Cookie2", + "Set-Cookie2", + "Access-Control-Allow-Origin", + "Access-Control-Allow-Credentials", + "Access-Control-Allow-Headers", + "Access-Control-Allow-Methods", + "Access-Control-Expose-Headers", + "Access-Control-Max-Age", + "Access-Control-Request-Headers", + "Access-Control-Request-Method", + "Origin", + "Service-Worker-Allowed", + "Timing-Allow-Origin", + "X-Permitted-Cross-Domain-Policies", + "DNT", + "Tk", + "Content-Disposition", + "Content-Length", + "Content-Type", + "Content-Encoding", + "Content-Language", + "Content-Location", + "Forwarded", + "X-Forwarded-For", + "X-Forwarded-Host", + "X-Forwarded-Proto", + "Via", + "Location", + "From", + "Host", + "Referer", + "Referrer-Policy", + "User-Agent", + "Allow", + "Server", + "Accept-Ranges", + "Range", + "If-Range", + "Content-Range", + "Cross-Origin-Opener-Policy", + "Cross-Origin-Resource-Policy", + "Content-Security-Policy", + "Content-Security-Policy-Report-Only", + "Expect-CT", + "Feature-Policy", + "Public-Key-Pins", + "Public-Key-Pins-Report-Only", + "Strict-Transport-Security", + "Upgrade-Insecure-Requests", + "X-Content-Type-Options", + "X-Download-Options", + "X-Frame-Options", + "X-Powered-By", + "X-XSS-Protection", + "Last-Event-ID", + "NEL", + "Ping-From", + "Ping-To", + "Report-To", + "Transfer-Encoding", + "TE", + "Trailer", + "Sec-WebSocket-Key", + "Sec-WebSocket-Extensions", + "Sec-WebSocket-Accept", + "Sec-WebSocket-Protocol", + "Sec-WebSocket-Version", + "Accept-Push-Policy", + "Accept-Signature", + "Alt-Svc", + "Date", + "Large-Allocation", + "Link", + "Push-Policy", + "Retry-After", + "Signature", + "Signed-Headers", + "Server-Timing", + "SourceMap", + "Upgrade", + "X-DNS-Prefetch-Control", + "X-Firefox-Spdy", + "X-Pingback", + "X-Requested-With", + "X-Robots-Tag", + "X-UA-Compatible" +] diff --git a/pages/graphql.vue b/pages/graphql.vue index f81d3714..417b66f8 100644 --- a/pages/graphql.vue +++ b/pages/graphql.vue @@ -345,6 +345,7 @@ import axios from "axios"; import * as gql from "graphql"; import textareaAutoHeight from "../directives/textareaAutoHeight"; +import { commonHeaders } from "../functions/headers"; import AceEditor from "../components/ace-editor"; import QueryEditor from "../components/graphql/queryeditor"; import { sendNetworkRequest } from "../functions/network"; @@ -364,130 +365,7 @@ export default { data() { return { schemaString: "", - commonHeaders: [ - "WWW-Authenticate", - "Authorization", - "Proxy-Authenticate", - "Proxy-Authorization", - "Age", - "Cache-Control", - "Clear-Site-Data", - "Expires", - "Pragma", - "Warning", - "Accept-CH", - "Accept-CH-Lifetime", - "Early-Data", - "Content-DPR", - "DPR", - "Device-Memory", - "Save-Data", - "Viewport-Width", - "Width", - "Last-Modified", - "ETag", - "If-Match", - "If-None-Match", - "If-Modified-Since", - "If-Unmodified-Since", - "Vary", - "Connection", - "Keep-Alive", - "Accept", - "Accept-Charset", - "Accept-Encoding", - "Accept-Language", - "Expect", - "Max-Forwards", - "Cookie", - "Set-Cookie", - "Cookie2", - "Set-Cookie2", - "Access-Control-Allow-Origin", - "Access-Control-Allow-Credentials", - "Access-Control-Allow-Headers", - "Access-Control-Allow-Methods", - "Access-Control-Expose-Headers", - "Access-Control-Max-Age", - "Access-Control-Request-Headers", - "Access-Control-Request-Method", - "Origin", - "Service-Worker-Allowed", - "Timing-Allow-Origin", - "X-Permitted-Cross-Domain-Policies", - "DNT", - "Tk", - "Content-Disposition", - "Content-Length", - "Content-Type", - "Content-Encoding", - "Content-Language", - "Content-Location", - "Forwarded", - "X-Forwarded-For", - "X-Forwarded-Host", - "X-Forwarded-Proto", - "Via", - "Location", - "From", - "Host", - "Referer", - "Referrer-Policy", - "User-Agent", - "Allow", - "Server", - "Accept-Ranges", - "Range", - "If-Range", - "Content-Range", - "Cross-Origin-Opener-Policy", - "Cross-Origin-Resource-Policy", - "Content-Security-Policy", - "Content-Security-Policy-Report-Only", - "Expect-CT", - "Feature-Policy", - "Public-Key-Pins", - "Public-Key-Pins-Report-Only", - "Strict-Transport-Security", - "Upgrade-Insecure-Requests", - "X-Content-Type-Options", - "X-Download-Options", - "X-Frame-Options", - "X-Powered-By", - "X-XSS-Protection", - "Last-Event-ID", - "NEL", - "Ping-From", - "Ping-To", - "Report-To", - "Transfer-Encoding", - "TE", - "Trailer", - "Sec-WebSocket-Key", - "Sec-WebSocket-Extensions", - "Sec-WebSocket-Accept", - "Sec-WebSocket-Protocol", - "Sec-WebSocket-Version", - "Accept-Push-Policy", - "Accept-Signature", - "Alt-Svc", - "Date", - "Large-Allocation", - "Link", - "Push-Policy", - "Retry-After", - "Signature", - "Signed-Headers", - "Server-Timing", - "SourceMap", - "Upgrade", - "X-DNS-Prefetch-Control", - "X-Firefox-Spdy", - "X-Pingback", - "X-Requested-With", - "X-Robots-Tag", - "X-UA-Compatible" - ], + commonHeaders, queryFields: [], mutationFields: [], subscriptionFields: [], diff --git a/pages/index.vue b/pages/index.vue index aa9019f1..7d4c4951 100644 --- a/pages/index.vue +++ b/pages/index.vue @@ -1375,6 +1375,7 @@ import section from "../components/section"; import url from "url"; import querystring from "querystring"; +import { commonHeaders } from "../functions/headers"; import textareaAutoHeight from "../directives/textareaAutoHeight"; import parseCurlCommand from "../assets/js/curlparser.js"; import getEnvironmentVariablesFromScript from "../functions/preRequest"; @@ -1497,130 +1498,8 @@ export default { "text/plain" ], - commonHeaders: [ - "WWW-Authenticate", - "Authorization", - "Proxy-Authenticate", - "Proxy-Authorization", - "Age", - "Cache-Control", - "Clear-Site-Data", - "Expires", - "Pragma", - "Warning", - "Accept-CH", - "Accept-CH-Lifetime", - "Early-Data", - "Content-DPR", - "DPR", - "Device-Memory", - "Save-Data", - "Viewport-Width", - "Width", - "Last-Modified", - "ETag", - "If-Match", - "If-None-Match", - "If-Modified-Since", - "If-Unmodified-Since", - "Vary", - "Connection", - "Keep-Alive", - "Accept", - "Accept-Charset", - "Accept-Encoding", - "Accept-Language", - "Expect", - "Max-Forwards", - "Cookie", - "Set-Cookie", - "Cookie2", - "Set-Cookie2", - "Access-Control-Allow-Origin", - "Access-Control-Allow-Credentials", - "Access-Control-Allow-Headers", - "Access-Control-Allow-Methods", - "Access-Control-Expose-Headers", - "Access-Control-Max-Age", - "Access-Control-Request-Headers", - "Access-Control-Request-Method", - "Origin", - "Service-Worker-Allowed", - "Timing-Allow-Origin", - "X-Permitted-Cross-Domain-Policies", - "DNT", - "Tk", - "Content-Disposition", - "Content-Length", - "Content-Type", - "Content-Encoding", - "Content-Language", - "Content-Location", - "Forwarded", - "X-Forwarded-For", - "X-Forwarded-Host", - "X-Forwarded-Proto", - "Via", - "Location", - "From", - "Host", - "Referer", - "Referrer-Policy", - "User-Agent", - "Allow", - "Server", - "Accept-Ranges", - "Range", - "If-Range", - "Content-Range", - "Cross-Origin-Opener-Policy", - "Cross-Origin-Resource-Policy", - "Content-Security-Policy", - "Content-Security-Policy-Report-Only", - "Expect-CT", - "Feature-Policy", - "Public-Key-Pins", - "Public-Key-Pins-Report-Only", - "Strict-Transport-Security", - "Upgrade-Insecure-Requests", - "X-Content-Type-Options", - "X-Download-Options", - "X-Frame-Options", - "X-Powered-By", - "X-XSS-Protection", - "Last-Event-ID", - "NEL", - "Ping-From", - "Ping-To", - "Report-To", - "Transfer-Encoding", - "TE", - "Trailer", - "Sec-WebSocket-Key", - "Sec-WebSocket-Extensions", - "Sec-WebSocket-Accept", - "Sec-WebSocket-Protocol", - "Sec-WebSocket-Version", - "Accept-Push-Policy", - "Accept-Signature", - "Alt-Svc", - "Date", - "Large-Allocation", - "Link", - "Push-Policy", - "Retry-After", - "Signature", - "Signed-Headers", - "Server-Timing", - "SourceMap", - "Upgrade", - "X-DNS-Prefetch-Control", - "X-Firefox-Spdy", - "X-Pingback", - "X-Requested-With", - "X-Robots-Tag", - "X-UA-Compatible" - ], + commonHeaders, + showRequestModal: false, editRequest: {}, urlExcludes: {},