It was a surprise for me when I restarted my computer. All forms on Chrome were open and the text still intact. How is it possible. I thought the data is stored in RAM and would be deleted. When I restored the tabs, all the text of the forms and text boxes was present. It works in Chrome and Firefox. This can have serious security implications if sensitive information is stored in such forms. How to purge permanently all the data of the navigator?
Tag: Chrome
nginx + gunicorn + django SSL does not work. Under Chrome, this gives ERR_SSL_PROTOCOL_ERROR, which is "This site can not provide a secure connection."
I just finished setting up a nginx + gunicorn + django web server (after having almost the same problem with apache2 + wsgi + django), and I confirmed that it worked perfectly with http. After running the letsencrypt certbot script, it correctly redirects http to https. However, my browser then lands on the error mentioned in the title. I spent many hours now trying everything I could think of and now I have come here. Some of the commented lines in the files may reveal some of the things I have tried so far.
P.S. I tried to run ssllabs and check-your-website and I did not return anything useful / that I did not already know.
Additional information (some may not be necessary, but others may be useful)
Run Ubuntu 18.04 LTS
nginx nginx / 1.14.0
Django 2.2.5
Python 3.6
gunicorn 19.9.0
The domain is from Google domains and uses the googledomains protocol in ddclient for DDNS.
Files
# /etc/nginx/sites-available/mysite
upstream your-gunicorn {
server unix:/tmp/gunicorn.sock fail_timeout=0;
}
server {
client_max_body_size 4G;
server_name mysite.net;
keepalive_timeout 70;
access_log /var/log/nginx/mysite.access_log;
error_log /var/log/nginx/mysite.error_log;
root /home/user/Desktop/Django/mysite;
location /static/ {
autoindex on;
alias /home/user/Desktop/Django/mysite/static/;
expires 1M;
access_log off;
add_header Cache-Control "public";
proxy_ignore_headers "Set-Cookie";
}
location @proxy_to_app {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $http_host;
# proxy_set_header X-Forwarded-Proto $scheme;
proxy_redirect off;
proxy_pass http://your-gunicorn;
}
location / {
try_files $uri @proxy_to_app;
}
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/nerd-squad.net/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/nerd-squad.net/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}
server {
if ($host = mysite.net) {
return 301 https://$host$request_uri;
} # managed by Certbot
listen 80 default;
server_name mysite.net;
return 404; # managed by Certbot
}
# /gunicorn/gunicorn-config.py
import multiprocessing
bind = 'unix:/tmp/gunicorn.sock'
workers = multiprocessing.cpu_count() * 2 + 1
reload = True
daemon = True
accesslog = './access.log'
errorlog = './error.log'
# /mysite/settings.py
"""
import os
# Build paths inside the project like this: os.path.join(BASE_DIR, ...)
BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))
# Quick-start development settings - unsuitable for production
# See https://docs.djangoproject.com/en/2.0/howto/deployment/checklist/
# SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY =
# SECURITY WARNING: don't run with debug turned on in production!
DEBUG = False
ALLOWED_HOSTS = (
)
# Application definition
INSTALLED_APPS = (
'home.apps.HomeConfig',
'pics.apps.PicsConfig',
'welcome.apps.WelcomeConfig',
'django.contrib.admin',
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
)
MIDDLEWARE = (
'django.middleware.security.SecurityMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
)
ROOT_URLCONF = 'mysite.urls'
TEMPLATES = (
{
'BACKEND': 'django.template.backends.django.DjangoTemplates',
'DIRS': (),
'APP_DIRS': True,
'OPTIONS': {
'context_processors': (
'django.template.context_processors.debug',
'django.template.context_processors.request',
'django.contrib.auth.context_processors.auth',
'django.contrib.messages.context_processors.messages',
),
},
},
)
WSGI_APPLICATION = 'mysite.wsgi.application'
# Database
# https://docs.djangoproject.com/en/2.0/ref/settings/#databases
DATABASES = {
'default': {
'ENGINE': 'django.db.backends.sqlite3',
'NAME': os.path.join(BASE_DIR, 'db.sqlite3')
}
}
# Password validation
# https://docs.djangoproject.com/en/2.0/ref/settings/#auth-password-validators
AUTH_PASSWORD_VALIDATORS = (
{
'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
},
{
'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
},
)
# Internationalization
# https://docs.djangoproject.com/en/2.0/topics/i18n/
LANGUAGE_CODE = 'en-us'
TIME_ZONE = 'America/Chicago'
USE_I18N = True
USE_L10N = True
USE_TZ = True
# Static files (CSS, JavaScript, Images)
# https://docs.djangoproject.com/en/2.0/howto/static-files/
STATIC_URL = '/static/'
STATICFILES_DIRS = (
os.path.join(BASE_DIR, "staticfiles"),
)
#STATIC_ROOT = os.path.join(BASE_DIR, "static")
STATIC_ROOT = '/home/user/Desktop/Django/static'
#SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
I can provide additional information if necessary. Thank you!
Nothing will erase the chrome cache on Android
I'm editing the mobile version of my website and I can not update it on my phone. I have tried:
- Clear the cache normally
- Switch to incognito mode
- Request the office site
- Press (i) and clear the site settings
- Put javascript: location.reload (true) in the address bar
- Force chrome shutdown and cache removal in android settings
On my desk, ctrl + f5 does the business, and the site is charging. An extremely strange remark that I will add to the mystery is that when I first went to the website on a FireFox desktop, the old site was displayed until I got it. ctrl + F5ed. It happened even though I have never visited my site on FireFox. In addition, when I browse in my css file, it displays the updated text on Android even if it does not show up in the design.
Update: Ask the desktop site to reload the appropriate page on a Firefox mobile, must be a question of chrome
Chrome Extension to connect to the website and then navigate [on hold]
I am looking to create a chrome extension that allows access to bet365, to connect and place bets in certain markets (powered by a data stream), a much appreciated help.
google chrome – how to prevent websites from knowing if they are in a targeted window or not?
There was a Chrome extension that disabled the onblur / onfocus / focusin / focusout events and the page visibility API, but I can not find it anymore.
As a rule, after installing the extension, not all sites would be able to detect if they were in an untargeted window.
I am also interested in Firefox solutions.
Thank you.
forms – How can I tell Chrome which input fields should be remembered / what will be login credentials?
I have a registration form that contains these input fields (in the order):
- E-mail (autocomplete = "email", type = "email")
- (User name (type = "text")
- (Show a name (type = "text")
- password (autocomplete = "new password", type = "password")
- password again (type = "password")
If the user sends this form, Chrome suggests to save password but paired with the names) instead of e-mail field (which will be necessary to connect). How can I tell Google Chrome (and other browsers) which input fields should be remembered / what will be login credentials? (in my case: e-mail and password). Is there some kind of HTML5 code for this?
I have tried until now:
- autocomplete = "false", autocomplete = "off" and autocomplete = "new-password" in the name fields (does not work)
- autocomplete = "false", autocomplete = "off" on the registration form itself (does not work)
- give an unrecognizable identifier and name to the name fields (id = "usnm" instead of id = "username") (does not work)
I need to achieve:
- Tell the browser that you do not remember the entry values of the registration form as identifiers OR
- Tells the browser exactly which data values to remember (e-mail + pass)
Any help is very appreciated!
How to change profile in Chrome for Android?
Is there a way to change Chrome profile when using the Chrome mobile phone app?
sharepoint online – How to solve javascript: SPClientPeoplePicker is not defined in Edge (works fine in Chrome and IE)?
I just noticed that a javascript function for searching and populating people selection controls in SharePoint was not working in Edge, whereas it worked perfectly in Chrome and IE.
In Edge, an error related to the code below appears in the console log: "SPClientPeoplePicker" is not set.
var controlName = "External";
var ppDiv = $("(id$='ClientPeoplePicker')(title='" + controlName + "')");
var ppEditor = ppDiv.find("(title='" + controlName + "')");
var spPP = SPClientPeoplePicker.SPClientPeoplePickerDict(ppDiv(0).id);
ppEditor.val(cuser);
spPP.AddUnresolvedUserFromEditor(true);
Has anyone met this? If yes, solutions?
Chrome google extensions – Click all the buttons of the same name on a webpage with the help of Javascript
In a web page, there are several Yes button, and I want all to click by clicking once on the button of my add-on. Now, here's the solution if I have to click once –
But what changes should I make when the button is used multiple times and I want to click on it (button with the same name "Yes") automatically?
javascript – Copy text from a pop-up window / message box on the Chrome browser
If I "inspect" a popup window / box on a Chrome browser (by right-clicking on a webpage in a Chrome browser), there is a field called "Accessibility".
Under "Accessibility", there is "GenericContainer" which has "list". this list has a number of names as values (for example, a different type of pen).
I would like to copy all values (names) from "list" and separate each value (names) with ";" when I click on this popup / message using an add-on in Chrome.
How can I do this add-on?
I understand that I have to write javascript to run with other .js files, for example, the codes of this tutorial. But I do not know the associated function that I have to call.
Please keep in mind that I am new. Thanks in advance!
PS:
-
Please, let me know if my english is ok.
-
At least provide a tutorial, where I can find related instructions.
