Origin evil.com in Request Header

Question

I am trying to send form data to a webservice but below \"Request Header\" in the \"Network\" of the Chrome DOM I got the origin \"evil.com\" and referer \"localhost:8080\".

Answer 1

To create a jupyter_notebook_config.py file if it is not there, , you can use the following command line from ~/.jupyter:

$ jupyter notebook --generate-config

Uncomment this

c.NotebookApp.allow_origin = '*'

Answer 2

The overwrite of the header origin is caused by Allow-Control-Allow-Origin: * chrome extension.

Link to the extension

Try disabling this extension in order to solve your problem.