Arst
Reputation: 3307
Is it possible to manipuate 3rd party Chrome Extensions Network Reqeuests?
I am building a Chrome Extension that will call my backend APIs to validate something. I would like to know is it possible that other people could build some Chrome Extensions to manipulate the request and response to compromise the validation process? For example:
API: https://my-domain.com/validation
request:
{
"key": "aaaa-bbbb-cccc-dddd"
}
response:
{
"status": "IN_VALID_KEY"
}
Would someone is able to build a Chrome Extension to monitor requests on https://my-domain.com/validation and change the response to be
{
"status": "VALID"
}
Could that happen?
Upvotes: 0
Views: 51
Answers (0)
Related Questions
- Removing input background colour for Chrome autocomplete?
- How to manually send HTTP POST requests from Firefox or Chrome browser
- Disable same origin policy in Chrome
- How do I get ASP.NET Web API to return JSON instead of XML using Chrome?
- Freeze screen in chrome debugger / DevTools panel for popover inspection?
- See :hover state in Chrome Developer Tools
- Disabling Chrome cache for website development
- How to reposition Chrome Developer Tools