roundabout,
created on Sunday, 16 February 2025, 20:18:37 (1739737117),
received on Sunday, 16 February 2025, 20:18:40 (1739737120)
Author identity: vlad <vlad.muntoiu@gmail.com>
e333ac0425ce4e926e628fb975e90e606a5fd8e1
templates/errors/401.html
@@ -4,25 +4,35 @@
{% set error_code = 401 %}
{% block error_content %}
<p>
You must be authenticated to access this. And even if you're authenticated, you need to have
the right permissions, or you'll get 403 Forbidden. How did you even think you could do this
anonymously?<br>
<a href="/accounts/">Log in</a> and try this request again. Or just look at this random picture
the server found for you. Try bribing the subject of it for access, there may be a nonzero chance it
will let you in.<br>
What reason do you even have not to <a href="/accounts/">have an account</a>? FYI, we already
know your IP address, city, browser, OS, device, screen size, ISP (as any website does), and we've
just logged your terrible attempt at breaking our server (we actually log everything),
so it's not like you're losing anything by signing up.
Don't believe us?<br> Aren't you using a <code>{{ user_agent }}</code>? No, we don't run analytics
and we're not interested in your data.
</p>
<div style="padding: 1rem; display: flex; flex-direction: column; align-items: center;">
Try our bribe service, in case you've logged in but can't access the resource, putting you in depression:
<a class="button" href="https://www.youtube.com/watch?v=dQw4w9WgXcQ">Attempt to bribe the cat/dog/flower/rubbish/sun/[insert object here] for access</a>
(bribe service requires JavaScript, cookies and sending your data to Google, which actually wants it, unlike us)
</div>
{% if request.method != "GET" %}
<p>
You must be authenticated to access this.
And even if you're authenticated, you need to have
the right permissions, or you'll get 403 Forbidden. How did you even think you could do this
anonymously?<br>
<a href="/accounts/">Log in</a> and try this request again. Or just look at this random picture
the server found for you. Try bribing the subject of it for access, there may be a nonzero chance it
will let you in.<br>
What reason do you even have not to <a href="/accounts/">have an account</a>? FYI, we already
know your IP address, city, browser, OS, device, screen size, ISP (as any website does), and we've
just logged your terrible attempt at breaking our server (we actually log everything),
so it's not like you're losing anything by signing up.
Don't believe us?<br> Aren't you using a <code>{{ user_agent }}</code>? No, we don't run analytics
and we're not interested in your data.
</p>
<div style="padding: 1rem; display: flex; flex-direction: column; align-items: center;">
Try our bribe service, in case you've logged in but can't access the resource, putting you in depression:
<a class="button" href="https://www.youtube.com/watch?v=dQw4w9WgXcQ">Attempt to bribe the cat/dog/flower/rubbish/sun/[insert object here] for access</a>
(bribe service requires JavaScript, cookies and sending your data to Google, which actually wants it, unlike us)
</div>
{% else %}
<p>
You must be authenticated to access this. Additionally, if you do authenticate but
don't have the right permissions, you'll get 403 Forbidden.<br>
<a href="/accounts/">Log in</a> and try this request again. Or just look at this random picture
the server found for you.
</p>
{% endif %}
<p>
<a href="/">Home page</a>
</p>
templates/errors/403.html
@@ -4,17 +4,24 @@
{% set error_code = 403 %}
{% block error_content %}
<p>
You're not allowed to access this resource. In fact, you shouldn't have been able to see this page at all.
Our app isn't made in JS, did you think you could just bypass security by forcing the submit button to appear?<br>
However, you <em>can</em> access this random and unrelated picture. Try bribing the subject of it for access,
there may be a nonzero chance it will let you in.
</p>
<div style="padding: 1rem; display: flex; flex-direction: column; align-items: center;">
Try our bribe service, in case you've logged in but can't access the resource, putting you in depression:
<a class="button" href="https://www.youtube.com/watch?v=dQw4w9WgXcQ">Attempt to bribe the cat/dog/flower/rubbish/sun/[insert object here] for access</a>
(bribe service requires JavaScript, cookies and sending your data to Google, which actually wants it, unlike us)
</div>
{% if request.method != "GET" %}
<p>
You're not allowed to access this resource. In fact, you shouldn't have been able to see this page at all.
Our app isn't made in JS, did you think you could just bypass security by forcing the submit button to appear?<br>
However, you <em>can</em> access this random and unrelated picture. Try bribing the subject of it for access,
there may be a nonzero chance it will let you in.
</p>
<div style="padding: 1rem; display: flex; flex-direction: column; align-items: center;">
Try our bribe service, in case you've logged in but can't access the resource, putting you in depression:
<a class="button" href="https://www.youtube.com/watch?v=dQw4w9WgXcQ">Attempt to bribe the cat/dog/flower/rubbish/sun/[insert object here] for access</a>
(bribe service requires JavaScript, cookies and sending your data to Google, which actually wants it, unlike us)
</div>
{% else %}
<p>
You're not allowed to access this resource. If you're authenticated, you may not have the right permissions.
However, you <em>can</em> access this random and unrelated picture.
</p>
{% endif %}
<p>
<a href="/">Home page</a>
</p>