to-google-translate icon indicating copy to clipboard operation
to-google-translate copied to clipboard

Published 20 hours ago verified publisher icon itsecurityco

Choosing "To Google Translate" in context menu results in 403 forbidden.

Open schwim0341 opened this issue 2 years ago • 5 comments

This is what I get when I choose to translate then auto/en:

403. That’s an error.

We're sorry, but you do not have access to this page. That’s all we know.

Any idea how I could fix this?

Thanks for your time!

schwim0341 avatar Apr 20 '22 12:04 schwim0341

Same here, smells a bit like Google blocked something?

floe avatar May 02 '22 07:05 floe

ditto

fredless avatar May 04 '22 02:05 fredless

Same here.

frameset avatar May 30 '22 15:05 frameset

Same here.

I think the issue comes from Sec-Fetch-Dest: iframe header, added automatically by the browser which trigger 403.

https://blog.mozilla.org/security/2021/07/12/firefox-90-supports-fetch-metadata-request-headers/

You can test :

Output 200: curl -v -k -H "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8" -H "Accept-Language: en-AU" -H "Connection: keep-alive" -H "DNT: 1" -H "Upgrade-Insecure-Requests: 1" -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0" -H "Sec-Fetch-Mode: navigate" -H "Sec-Fetch-Site: none" -H "Sec-Fetch-User: ?1" -H "Sec-Fetch-Dest: document" -o out1.html "https://translate.google.com/?sl=auto&tl=en&text=bonjour"

Output 403: curl -v -k -H "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8" -H "Accept-Language: en-AU" -H "Connection: keep-alive" -H "DNT: 1" -H "Upgrade-Insecure-Requests: 1" -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0" -H "Sec-Fetch-Mode: navigate" -H "Sec-Fetch-Site: none" -H "Sec-Fetch-User: ?1" -H "Sec-Fetch-Dest: iframe" -o out1.html "https://translate.google.com/?sl=auto&tl=en&text=bonjour"

Solution: go to this add-on settings and tick "Open in... (o)New Tab".

Thank you Juan again, nice add-on !!

guyplusplus avatar Jul 13 '22 09:07 guyplusplus

Same here.

I think the issue comes from Sec-Fetch-Dest: iframe header, added automatically by the browser which trigger 403.

https://blog.mozilla.org/security/2021/07/12/firefox-90-supports-fetch-metadata-request-headers/

You can test :

Output 200: curl -v -k -H "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8" -H "Accept-Language: en-AU" -H "Connection: keep-alive" -H "DNT: 1" -H "Upgrade-Insecure-Requests: 1" -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0" -H "Sec-Fetch-Mode: navigate" -H "Sec-Fetch-Site: none" -H "Sec-Fetch-User: ?1" -H "Sec-Fetch-Dest: document" -o out1.html "https://translate.google.com/?sl=auto&tl=en&text=bonjour"

Output 403: curl -v -k -H "Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8" -H "Accept-Language: en-AU" -H "Connection: keep-alive" -H "DNT: 1" -H "Upgrade-Insecure-Requests: 1" -H "User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:102.0) Gecko/20100101 Firefox/102.0" -H "Sec-Fetch-Mode: navigate" -H "Sec-Fetch-Site: none" -H "Sec-Fetch-User: ?1" -H "Sec-Fetch-Dest: iframe" -o out1.html "https://translate.google.com/?sl=auto&tl=en&text=bonjour"

Solution: go to this add-on settings and tick "Open in... (o)New Tab".

Thank you Juan again, nice add-on !!

This is workaround. The solution will be to fix popup. Wait for it <3

KRUXLEX avatar Jan 04 '23 10:01 KRUXLEX