You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
Apple authorization-popup throws 431 error because the request headers exceed 8 KB in size in total.
To Reproduce
Steps to reproduce the behavior:
Use Musish for a long time without clearing browser cookies (approximately a year in my case).
Be logged out on musi.sh (logged out from Apple Music).
Click either of the two login buttons (splash-screen or top-right corner).
Watch popup for authorize.music.apple.com open, instantly redirect to activate.apple.com, and return <h1>Bad Message 431</h1><pre>reason: Request Header Fields Too Large</pre> with status code 431.
Expected behavior
Login-page requesting email and password should show in the authorization-popup.
Screenshots
Browser
Chromium 84
Additional context
The issue appears to affect the music.apple.com domain in general because opening that domain directly returns nothing but a 400 error, as just as many HTTP request-headers are sent to it. Opening either musi.sh or music.apple.com in either a different browser (less cookies) or in a incognito window (no old cookies) works fine.
A total of 8302 characters are being in the authorization header, of which 6920 are cookies.
The text was updated successfully, but these errors were encountered:
I assume there is nothing that we can do about this since the request headers sent with *.music.apple.com are outside of our control. We also won't know if this error is happening to someone as no info about it is returned to us. So I guess the best we can do is keep this issue around to help spread awareness and help people fix this problem themselves.
Describe the bug
Apple authorization-popup throws 431 error because the request headers exceed 8 KB in size in total.
To Reproduce
Steps to reproduce the behavior:
musi.sh
(logged out from Apple Music).authorize.music.apple.com
open, instantly redirect toactivate.apple.com
, and return<h1>Bad Message 431</h1><pre>reason: Request Header Fields Too Large</pre>
with status code431
.Expected behavior
Login-page requesting email and password should show in the authorization-popup.
Screenshots
![image](https://user-images.githubusercontent.com/56790644/92307959-4df31600-ef9a-11ea-9c02-66c52a2aae85.png)
Browser
Chromium 84
Additional context
The issue appears to affect the
music.apple.com
domain in general because opening that domain directly returns nothing but a400
error, as just as many HTTP request-headers are sent to it. Opening eithermusi.sh
ormusic.apple.com
in either a different browser (less cookies) or in a incognito window (no old cookies) works fine.A total of 8302 characters are being in the authorization header, of which 6920 are cookies.
The text was updated successfully, but these errors were encountered: