I am working on a Chrome extension that would allow users to record all HTTP requests for a site, modify pieces of the request and then resend it.
I'm hoping to use jQuery's ajax method to construct and send the modified request. I have been able to construct the other parts of the request, but as far as I can tell there is no way to include cookie values in the request.
Just to be clear - I'm not trying to create a cookie on the browser, I'm trying to modify the cookie value that will be sent along as part of the HTTP request using jQuery's ajax method.
Can this be done with jQuery's ajax? If not, is there anyway to do it in javascript?
Yes, you can set cookie in the AJAX request in the server-side code just as you'd do for a normal request since the server cannot differentiate between a normal request or an AJAX request.
More generally, cookies are not required for AJAX. XmlHttpRequest support (or even iframe remoting, on older browsers) is all that is technically required.
To send cookies to the server, you need to add the "Cookie: name=value" header to your request. To send multiple Cookies in one cookie header, you can separate them with semicolons. In this Send Cookies example, we are sending HTTP cookies to the ReqBin echo URL.
processData. If set to false it stops jQuery processing any of the data. In other words if processData is false jQuery simply sends whatever you specify as data in an Ajax request without any attempt to modify it by encoding as a query string.
Since you're talking about a Chrome extension, you can employ webRequest
API to intercept and modify your requests.
chrome.webRequest.onBeforeSendHeaders.addListener(
function(details) {
/* Identify somehow that it's a request initiated by you */
for (var i = 0; i < details.requestHeaders.length; i++) {
if (details.requestHeaders[i].name === 'Cookie') {
/* Do something with it */
break;
}
}
/* Add the Cookie header if it was not found */
return {requestHeaders: details.requestHeaders};
},
{urls: ["*://*.example.com/*"]},
["blocking", "requestHeaders"]
);
This way you should be able to modify the cookies without actually modifying the browser's cookie store. I said "should" because I have not tested this solution.
Some important points:
"webRequest"
, "webRequestBlocking"
and host permissions (for this example, "*://*.example.com/"
)Set-Cookie
from the response from reaching the cookie store, you can do so by modifying the response headers in onHeadersReceived
. You can use the request ID to find the corresponding response.It's not going to be possible to do this everywhere using jQuery.ajax()
.
XMLHttpRequest
doesn't allow you to modify the Cookie header (see spec), and jQuery.ajax
uses XMLHttpRequest
under the hood.
And using XMLHttpRequest
directly in javascript has the same issue, so no help there.
You can add cookies to the current document and tell jQuery to tell the XHR to send cookies cross-domain with xhrFields: { withCredentials: true }
, but the target site also has to have the corresponding CORS setup, which it sounds like doesn't match your use-case.
If you want to try it out, some resources:
Sending credentials with cross-domain posts?
http://api.jquery.com/jQuery.ajax/#jQuery-ajax-settings (look for xhrFields)
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With