Welcome to BAR - the Bay Area's premier saltwater hobbyists hub!
ReeFi Labs

Browser based Apex Dashboard

svreef

svreef

Webmaster
BOD
Joined
Oct 8, 2019
Messages
3,161
Ooh. Let me know if I can help. I’d love to collaborate on it.
 
phatduckk

phatduckk

Supporting Member
Joined
Jul 14, 2019
Messages
772
FYI - before making ReefTiles an iPad app I tried to do it as a browser based project too. I kept running into CSRF problems.... which now makes your previous question make more sense (sorry, I blanked).

How did you get by that?

Here's my timeline:
  • Tried it as an in browser SPA using JS - couldn't get past CSRF
  • "solved" the CSRF by ignoring it and using an nginx proxy to hit the apex. The browser hit the proxy & it worked fine. I realized non-nerds wouldn't ever do this and bailed on it as it essentially requires an always on server at home which most don't have
  • settled on an iOS app b/c it didn't have the CSRF issues and I'd never done and iPad/Swift app and thought it would be fun (all previous projects we're iPhone/Obj-C)
But I agree that a 100% browser based solution is the way to go!
 
thesassyindian

thesassyindian

Guest
Joined
Jun 8, 2020
Messages
1,487
phatduckk said:
FYI - before making ReefTiles an iPad app I tried to do it as a browser based project too. I kept running into CSRF problems.... which now makes your previous question make more sense (sorry, I blanked).

How did you get by that?

Here's my timeline:
  • Tried it as an in browser SPA using JS - couldn't get past CSRF
  • "solved" the CSRF by ignoring it and using an nginx proxy to hit the apex. The browser hit the proxy & it worked fine. I realized non-nerds wouldn't ever do this and bailed on it as it essentially requires an always on server at home which most don't have
  • settled on an iOS app b/c it didn't have the CSRF issues and I'd never done and iPad/Swift app and thought it would be fun (all previous projects we're iPhone/Obj-C)
But I agree that a 100% browser based solution is the way to go!
Click to expand...
Phew! I thought I was doing something wrong :)
I am planning on using AWS/ECS to serve the webpage and parsing scripts.
The plan is to use the apexfusion link (https://apexfusion.com/apex/<<apex id>>).

Why do you think that would risk banning from hitting fusion?
 
phatduckk

phatduckk

Supporting Member
Joined
Jul 14, 2019
Messages
772
thesassyindian said:
Phew! I thought I was doing something wrong :)
I am planning on using AWS/ECS to serve the webpage and parsing scripts.
The plan is to use the apexfusion link (https://apexfusion.com/apex/<<apex id>>).

Why do you think that would risk banning from hitting fusion?
Click to expand...
I mean - if you have a bunch of users (X) and poll 1-2 times (Y)/ minute you're generating X * Y hits per /minute from the same IP. If it gets flagged (even by an automated system) its a pretty easy ban target.

Plus - how are you hitting apexfusion.com? only way I figured it out was by using the XHR endpoints like https://apexfusion.com/api/apex/61a46654e61b98164035c0e8/status?_=1640040556427 but that'll get you a 401 unless you have the connect.sid cookie

ie:
~ % curl --cookie "connect.sid=xxxxxxx" "https://apexfusion.com/api/apex/61a46654e61b98164035c0e8/status?_=1640040556427"
 
S

SolusCado

Guest
Joined
Nov 16, 2024
Messages
1
Hey guys - sorry to bring back an old thread from the dead, but I've recently finished my own custom dashboard for Apex, and while it IS working, I am wondering if any of you have been able to solve the issues with connect.sid cookies refreshing. As of now, I basically just login to the local instance of Apex, use the browser dev tools to inspect the cookie, and then copy/paste that into my REST config whenever data stops coming through - but I don't know how often I'm going to need to do that, and I am wondering if there is a better way...
Screenshot 2024-11-16 at 9.53.26 AM.png
 
You must log in or register to reply here.

About Us

Welcome to BAR! Bay Area Reefers (BAR) is a club for reef aquarists in the San Francisco Bay Area. The primary purpose of BAR is to promote, foster, and encourage education and appreciation for the ethical husbandry and propagation of marine life. -The Board of Directors (BOD)

Important Links

Newest members

Share this page

Top