blog/output/index.html

<!DOCTYPE html>
<html lang="en-us">
<head>
	<meta charset="utf-8">
	<meta name="generator" content="Hugo 0.36" />
	<meta name="viewport" content="width=device-width, initial-scale=1">
	<link rel="stylesheet" href="/assets/css/theme.css">
	<link rel="alternate" href="/rss.xml" type="application/rss+xml" title="Pleasant Programmer">
	<script type="text/javascript" src="//use.typekit.net/iwm5axp.js"></script>
	<script type="text/javascript">try{Typekit.load();}catch(e){}</script>
	<title>Pleasant Programmer</title>
</head>

<body>
	<header id="header" role="banner">
		<div id="thomas">
			<img src="/assets/img/thomas.gif" alt="DJ THOMAS IN DA HAUS">
			<img src="/assets/img/thomas.png" alt="Pleasant Programmer">
		</div>
		<h1 class="site-title"><a href="/">Pleasant Programmer</a></h1>
		<nav id="menu" role="navigation">
			<ul>
				<li class="twitter">
					<a href="http://twitter.com/pleasantprog">@pleasantprog</a>
				</li>
				<li><a href="/pages/projects.html">projects</a></li>
				<li><a href="/posts.html">archives</a></li>
				<li><a href="/tags.html">tags</a></li>
				<li><a href="/rss.xml">rss</a></li>
			</ul>
		</nav>
	</header>
	<div id="container">


<main id="content" role="main">
<div class="postindex">
	
	<article class="h-entry post-text" itemscope itemtype="http://schema.org/Blog">
		<header>
			<h1 class="p-name entry-title" itemprop="headline">
				<a href="/posts/audventure.html" class="u-url">Audventure</a>
			</h1>
		</header>
		<div class="e-content entry-content">
			

<p>Sometime around 2013 I wrote a clone of the GBA game <a href="https://www.nintendo.co.jp/n08/bit_g/">bit Generations
SoundVoyager</a> called
<a href="https://audventure.pleasantprogrammer.com">audventure</a>. SoundVoyager is
actually a collection of mini-games where sound is the main focus. You can
actually play the game blind, and at some point, that&rsquo;s pretty much what
happens.</p>

<h2 id="sound-catcher">sound catcher</h2>

<p>The signature mini-game in SoundVoyager is sound catcher. In the mini-game, you
can only move left and right at the bottom of the stage, while a &ldquo;sound&rdquo; falls
from the top. Your goal is to catch the sound which is signified by a green dot.
When you catch it, the sound or beat becomes part of the BGM and a new dot
appears with a different sound.</p>

<p>You can of course use your eyes and move accordingly, but if you put on
earphones, you can actually hear where the dot is, either on your left or right,
with it getting louder as it gets close to you. As you collect more sounds, the
dot gets more and more transparent. Eventually (and this is where it gets fun),
you won&rsquo;t be able to see the sounds anymore and will have to rely mostly on your
ears.</p>

<p>You can see what the original game looks like in <a href="https://www.youtube.com/watch?v=C12WRgfIOC8">this
video</a> or you can play it under
<em>sound safari</em> in <a href="https://audventure.pleasantprogrammer.com">audventure</a>.</p>

<h2 id="webaudio-vs-flash">WebAudio vs Flash</h2>

<p>At the time I wrote audventure, only Chrome supported WebAudio. Also, the API
looked (and still looks) quite complicated. Flash on the other hand, was
starting to die, but still well-supported so I went with that. For the most
part, it worked okay though Chrome actually had timing issues when playing
sounds. Now, it doesn&rsquo;t work in any browser. I tried to debug the issues but
ultimately ended up just rewriting it to use WebAudio instead.</p>

<p>For the game, I needed to simulate the source of the sound in 2D/3D space. Flash
only really gives you stereo panning and volume control. With some maths, we can
actually get an acceptable solution. Less importantly, I needed to be able to
get frequency data of the currently playing &ldquo;sound&rdquo; to pulse the background. For
this, I actually had to implement the feature in the Flash library I was using.</p>

<p>With WebAudio, spatial audio is already built-in and you can simply give it the
coordinates of the sounds and the listener. There are some other options to
tweak, but for the most part, no complex math is needed. Getting frequency data
for a sound is also actually built-in and didn&rsquo;t take too long to integrate.</p>

<p>Overall, I was impressed by how much you can do with WebAudio out-of-the-box. I
kind of understand why it&rsquo;s complicated, but there&rsquo;s some simple functionality
that I wish was included. For example, there is no API to pause and then resume
playing an audio buffer. You have to manually save the elapsed time and play
from there.</p>

<h2 id="other-mini-games">Other mini-games</h2>

<p>So far I&rsquo;ve only actually implemented the sound catcher mini-game. There are
around 4 different categories with slight variations in between.</p>

<h3 id="sound-catcher-sound-slalom">sound catcher / sound slalom</h3>

<p>I&rsquo;ve explained sound catcher a while ago; sound slalom is a minor variation on
that. Instead of waiting for the &ldquo;sound&rdquo; to reach you, you now have to guide
yourself in between 2 &ldquo;poles&rdquo; of sound, as in <a href="https://en.wikipedia.org/wiki/Slalom_skiing">slalom
skiing</a>. But this time, you can
also accelerate forward. The goal is to finish the course before the time runs
out.</p>

<h3 id="sound-drive-sound-chase">sound drive / sound chase</h3>

<p>In sound drive, you&rsquo;re driving against the flow on a 5 lane road. You have to
avoid oncoming cars, trucks and animals until you reach the end. You&rsquo;re allowed
to change lanes and accelerate, and the game tracks your best time. Sound chase
is pretty much the same, except you&rsquo;re trying to catch up to a &ldquo;sound&rdquo;.</p>

<h3 id="sound-cannon">sound cannon</h3>

<p>In sound cannon, you&rsquo;re immobile but can rotate within a 180 degree angle. Your
goal is too shoot down &ldquo;sounds&rdquo; which are heading your way. If a sound reaches
you, it&rsquo;s game over. You win when you kill all the sounds.</p>

<h3 id="sound-picker-sound-cock">sound picker / sound cock</h3>

<p>In sound picker, you can move in a giant square field where various sounds are
scattered around. Your goal is to pick up all the sounds within the time limit.
Sound cock is similar, except the sounds are chickens and you have to chase them
around.</p>

<h2 id="source-code">Source Code</h2>

<p>If you want to see the source code, you can check it out
<a href="https://git.pleasantprogrammer.com/games/audventure">here</a>. The sound files
aren&rsquo;t in the repo though, since I&rsquo;m not quite sure about the licensing. If you
want to contribute music or sound effects, I&rsquo;d gladly appreciate it.</p>

		</div>
		<small class="dateline">Posted: <time class="published dt-published" itemprop="datePublished" datetime="2017-11-19">2017-11-19</time></small>
		| <small class="commentline"><a href="/posts/audventure.html#isso-thread">Comments</a></small>
	</article>
	</article>
	
	<article class="h-entry post-text" itemscope itemtype="http://schema.org/Blog">
		<header>
			<h1 class="p-name entry-title" itemprop="headline">
				<a href="/posts/openpreppad.html" class="u-url">OpenPrepPad</a>
			</h1>
		</header>
		<div class="e-content entry-content">
			

<p>Smart electronics and IoT (Internet of Things) are all the rage these days. You
have a lot of companies sprout up trying to make the next big thing, which also
leads to a lot of failures big and small. Pebble, the maker of my smartwatch,
got bought out by Fitbit recently. This left watch owners without any official
support, but thankfully, community members <a href="http://rebble.io/">stepped up</a> to continue
maintaining it.</p>

<p>Another casualty of the IoT boom was the <a href="http://theorangechef.com/">Orange Chef</a> <a href="https://www.amazon.com/Orange-Chef-Smart-Scale-Silver/dp/B00KFW8L90">Prep Pad</a>. It&rsquo;s a
bluetooth connected weighing scale to make it easy to track your calories and
carb/fat/protein intake. My dad bought it last year only to find out that the
app was incredibly buggy. The search function doesn&rsquo;t work which makes the whole
thing practically useless. I also found out later that you can&rsquo;t even download
the app to use the scale anymore.</p>

<p><strong>Note</strong> I just found out as I was writing this post that it <em>may</em> get supported
by <a href="http://www.prnewswire.com/news-releases/perfect-company-acquires-orange-chefs-prep-pad-related-ip-continues-momentum-in-the-connected-kitchen-300383178.html">another company</a>.</p>

<p>So the app is useless, but at least you can use it as a scale, right?</p>

<p><img src="/galleries/openpreppad/preppad.jpg" alt="Prep Pad" /></p>

<p>Nope. The device has no display whatsoever. The only controls on it are the
on/off button and a green LED that isn&rsquo;t even that useful at telling you whether
it&rsquo;s on or not. At this point, it&rsquo;s just a giant paperweight.</p>

<h2 id="reverse-engineering">Reverse Engineering</h2>

<p>Since I essentially had nothing to lose, I tried poking at the thing to figure
out how it works. I didn&rsquo;t really have experience with bluetooth besides trying
to get my bluetooth mouse connected on Linux. The main thing I used then was
<code>bluetoothctl</code> which is essentially a CLI for managing bluetooth devices so I
started there.</p>

<p>I started up <code>bluetoothctl</code> and turned on the Prep Pad. And it showed up!</p>
<div class="highlight" style="background: #f8f8f8"><pre style="line-height: 125%"><code class="language-text" data-lang="text"><span></span>[bluetooth]# power on
[CHG] Controller ... Class: 0x00010c
Changing power on succeeded
[CHG] Controller ... Powered: yes
[bluetooth]# scan on
Discovery started
[CHG] Device 1C:BA:8C:21:7C:BB RSSI: -51
[CHG] Device 1C:BA:8C:21:7C:BB Name: CHSLEEV_00
[CHG] Device 1C:BA:8C:21:7C:BB Alias: CHSLEEV_00
</code></pre></div>

<p>I then connected to it, which was surprisingly easy.</p>
<div class="highlight" style="background: #f8f8f8"><pre style="line-height: 125%"><code class="language-text" data-lang="text"><span></span>[bluetooth]# connect 1C:BA:8C:21:7C:BB
Attempting to connect to 1C:BA:8C:21:7C:BB
[CHG] Device 1C:BA:8C:21:7C:BB Connected: yes
[CHG] Device 1C:BA:8C:21:7C:BB Name: CH BTScale_00
[CHG] Device 1C:BA:8C:21:7C:BB Alias: CH BTScale_00
</code></pre></div>

<p>Now normally, when you turn the device on, the green light flashes occasionally.
Once I connected to it, the green light stayed on permanently. Clearly, I was
making progress. A lot of services were also discovered but I had no idea what
those things were at that point.</p>

<p>After a lot of poking around, I could check the general device information. You
could get the hardware, software and firmware version. There&rsquo;s also the device
serial number which was nowhere on the actual physical device.</p>
<div class="highlight" style="background: #f8f8f8"><pre style="line-height: 125%"><code class="language-text" data-lang="text"><span></span>[CHSLEEV_00]# select-attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010/char0017
[CH BTScale_00:/service0010/char0017]# attribute-info
Characteristic - Firmware Revision String
	UUID: 00002a26-0000-1000-8000-00805f9b34fb
	Service: /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010
	Value: 0x31
	Value: 0x2e
	Value: 0x31
	Value: 0x33
	Value: 0x41
	Value: 0x00
	Flags: read
[CH BTScale_00:/service0010/char0017]# read
Attempting to read /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010/char0017
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010/char0017 Value: 0x31
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010/char0017 Value: 0x2e
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010/char0017 Value: 0x31
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010/char0017 Value: 0x33
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010/char0017 Value: 0x41
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0010/char0017 Value: 0x00
  31 2e 31 33 41 00                                1.13A.
[CH BTScale_00:/service0010/char0017]#
</code></pre></div>

<p>There was also a service which contained Accel Enable, Accel Range, Accel
X-Coordinate, Accel Y-Coordinate, and Accel Z-Coordinate. I guess it stands for
accelerometer, which is probably what it uses to weigh things.</p>
<div class="highlight" style="background: #f8f8f8"><pre style="line-height: 125%"><code class="language-text" data-lang="text"><span></span>[CHSLEEV_00]# select-attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026
[CH BTScale_00:/service0023/char0024/desc0026]# read
Attempting to read /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x41
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x63
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x63
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x65
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x6c
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x20
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x45
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x6e
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x61
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x62
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x6c
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024/desc0026 Value: 0x65
  41 63 63 65 6c 20 45 6e 61 62 6c 65              Accel Enable
</code></pre></div>

<p>I couldn&rsquo;t read from any of the Accel Coordinates. It kept saying permission
denied. I could however, notify on them. But that didn&rsquo;t yield anything as well.
What I <em>could</em> read was Accel Enable, which was set to 00. I guess that means it
was off. After writing 01 to Accel Enable, I found I could get values out of
Accel X-Coordinate! Also, the green LED which was permanently on turned off.</p>
<div class="highlight" style="background: #f8f8f8"><pre style="line-height: 125%"><code class="language-text" data-lang="text"><span></span>[CHSLEEV_00]# select-attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024
[CH BTScale_00:/service0023/char0024]# write 01
Attempting to write /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char0024
[CH BTScale_00:/service0023/char0024]# select-attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a
[CH BTScale_00:/service0023/char002a]# notify on
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Notifying: yes
Notify started
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x5b
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0xa3
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x02
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x00
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x55
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0xa3
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x02
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x00
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x59
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0xa3
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x02
[CHG] Attribute /org/bluez/hci0/dev_1C_BA_8C_21_7C_BB/service0023/char002a Value: 0x00
</code></pre></div>

<p>I tried pressing the scale down a few times, and the values changed accordingly.
Now, I just had to figure out how to convert the values into grams. It looked
like the values were 32-bit integers sent as 4 bytes. In the above example it
would be <code>0x0002a35b</code>, <code>0x0002a355</code>, <code>0x0002a359</code> or 172891, 172855, 172899. The
values also decrease as you exert more effort on the scale. So assuming you take
the initial value as <em>tare</em>, you simply subtract any succeeding value from that
<em>tare</em> and you get the &ldquo;weight&rdquo;.</p>

<p>The values I got didn&rsquo;t seem to be in grams though. After weighing some things
on an actual scale and comparing the values I got, I found I can just divide the
values by 14 and get something in grams. That 14 is entirely a magic number
though and I have no idea whether other Prep Pad&rsquo;s would have the same constant.</p>

<h2 id="openpreppad">OpenPrepPad</h2>

<p>With all that figured out, I went ahead and made a <a href="https://github.com/thatsmydoing/openpreppad">simple CLI application</a>
to interface with the Prep Pad. Ironically, node was the simplest thing I found
that had <a href="https://github.com/sandeepmistry/noble">nice bluetooth library support</a> so that&rsquo;s what I wrote it in. I
also added most of the technical details in the README for that as well.</p>

<p>While this is all well and cool, I doubt the intersection of Linux users and
people who <s>got ripped off</s> bought the Prep Pad is anyone besides me. In
light of that, I&rsquo;m in the process of making a React Native version of the app,
but that&rsquo;s still a work in progress. Who knows, if the new owners of Prep Pad
are good, I might not even need to finish it.</p>

		</div>
		<small class="dateline">Posted: <time class="published dt-published" itemprop="datePublished" datetime="2017-01-15">2017-01-15</time></small>
		| <small class="commentline"><a href="/posts/openpreppad.html#isso-thread">Comments</a></small>
	</article>
	</article>
	
	<article class="h-entry post-text" itemscope itemtype="http://schema.org/Blog">
		<header>
			<h1 class="p-name entry-title" itemprop="headline">
				<a href="/posts/haproxy-charset.html" class="u-url">Haproxy Charset</a>
			</h1>
		</header>
		<div class="e-content entry-content">
			<p>A common problem we encounter is for things like <em>ñ</em> not showing up correctly. This actually caused <a href="http://www.rappler.com/nation/politics/elections/2016/132894-human-error-hash-election-results-code-mismatch">some issues</a> in the recent Philippine elections, but this isn&rsquo;t about hash codes or anything like that.</p>

<p>By default, we use UTF-8 for text storage and rendering. A problem is that browsers don&rsquo;t assume UTF-8 as the default and you need to have either a <code>&lt;meta charset=&quot;utf-8&quot; /&gt;</code> in the HTML or <code>Content-Type: text/html; charset=utf-8</code> in the headers. A few of our services don&rsquo;t set the <code>Content-Type</code> with the <code>charset=utf-8</code> part so you&rsquo;d get piñata instead of piñata.</p>

<p>Being lazy, we usually just correct this at the reverse proxy side. It&rsquo;s trivial to do in nginx. You just need to add <code>charset utf-8;</code> to your configuration and you&rsquo;re good. For haproxy though, I couldn&rsquo;t readily find a solution for it and had to go through the docs to see what I could do.</p>

<p>After a bit of experimenting, I had success with this:</p>
<div class="highlight" style="background: #f8f8f8"><pre style="line-height: 125%"><code class="language-text" data-lang="text"><span></span># set content-type to utf-8 if not already
acl has_charset hdr_sub(content-type) -i charset=
rspirep (Content-Type.*) \1;\ charset=utf-8 unless has_charset
</code></pre></div>

<p>This is probably not the best way to do it. Arguably, we should just fix our services to have the correct <code>Content-Type</code> in the first place, but I can do that some other time.</p>

		</div>
		<small class="dateline">Posted: <time class="published dt-published" itemprop="datePublished" datetime="2016-06-24">2016-06-24</time></small>
		| <small class="commentline"><a href="/posts/haproxy-charset.html#isso-thread">Comments</a></small>
	</article>
	</article>
	
	<article class="h-entry post-text" itemscope itemtype="http://schema.org/Blog">
		<header>
			<h1 class="p-name entry-title" itemprop="headline">
				<a href="/posts/cloudflare-shenanigans.html" class="u-url">Cloudflare Shenanigans</a>
			</h1>
		</header>
		<div class="e-content entry-content">
			<p>An old client of ours managed to convince a telco to zero-rate the data for their app. In order to whitelist it though, we needed to use plain HTTP for domain whitelisting. For HTTPS, they can only whitelist by IP address. Like any good developer, we were using HTTPS. Also, like any good developer, we put our server behind Cloudflare.</p>

<p>Now the problem is that Cloudflare can put you behind <a href="https://www.cloudflare.com/ips/">any IP they own</a>, which is a huge range. There&rsquo;s no guarantee that the IP we have now is going to be the same later on. So we did the reasonable thing and asked them to whitelist all of the Cloudflare IPs. And the telco agreed! We were in total disbelief when that happened. But hey, if life gives you free internet, you take it.</p>

<p>We never actually empirically tested whether other sites hosted on Cloudflare were also actually zero-rated. But I like to think that we saved a lot of people on their data costs from browsing Reddit and 4chan. But alas, good things must come to an end.</p>

<p>A few months after we started beta testing the app, Cloudflare added more IPs to their range. Unfortunately, our server got moved to those new IPs which were not whitelisted yet. Apparently, the telco whitelisting process was incredibly convoluted and time consuming. Our client didn&rsquo;t want to bother asking them to whitelist more IPs. We also tried asking Cloudflare to move us back to the original IP range, but they could only do that if we were in their enterprise tier. We couldn&rsquo;t really afford that, so we looked for other options.</p>

<p>Since Cloudflare was essentially just a giant reverse proxy, theoretically there should be no distinction between one IP address from another. The specific IP we get is probably just for load balancing. So we tried accessing the IPs in the range directly and just setting the Host header and it worked! But we get SSL errors because the IP itself doesn&rsquo;t have its own certificate.</p>

<p>After more testing, we figured out that you could actually use any Cloudflare backed domain so long as we properly set the Host header. We just needed to find one still in the old range. Coincidentally, 4chan.org was. Which led to this wonderful commit</p>
<div class="highlight" style="background: #f8f8f8"><pre style="line-height: 125%"><code class="language-diff" data-lang="diff"><span></span>commit 123456789abcdef
Author: ~~~~~~
Date:   ~~~~~~

    4chan hack

<span style="color: #000080; font-weight: bold">diff --git a/src/com/client/common/Util.java b/src/com/client/common/Util.java</span>
<span style="color: #A00000">--- a/src/com/client/common/Util.java</span>
<span style="color: #00A000">+++ b/src/com/client/common/Util.java</span>
<span style="color: #800080; font-weight: bold">@@ -210,7 +210,8 @@ public class Util {</span>
        }

        public static String getServerAddress(Context context) {
<span style="color: #A00000">-               String address = &quot;https://backend.client.com&quot;;</span>
<span style="color: #00A000">+               // String address = &quot;https://backend.client.com&quot;;</span>
<span style="color: #00A000">+               String address = &quot;https://4chan.org&quot;;</span>
                if(!isDebug(context)) return address;
                try {
<span style="color: #000080; font-weight: bold">diff --git a/src/com/client/common/logging/APIClient.java b/src/com/client/common/logging/APIClient.java</span>
<span style="color: #A00000">--- a/src/com/client/common/logging/APIClient.java</span>
<span style="color: #00A000">+++ b/src/com/client/common/logging/APIClient.java</span>
<span style="color: #800080; font-weight: bold">@@ -101,6 +101,7 @@ public class APIClient {</span>
        private HttpResponse postInternal(String url, List&lt;NameValuePair&gt; data, boolean forRegistration) throws ClientProtocolException, IOException {
                HttpPost request = new HttpPost(Util.getServerAddress(mContext)+&quot;/api/&quot;+url);
                request.setHeader(&quot;X-API-VERSION&quot;, apiVersion);
<span style="color: #00A000">+               request.setHeader(&quot;Host&quot;, &quot;backend.client.com&quot;);</span>

                if(data == null) {
                        data = new ArrayList&lt;NameValuePair&gt;();
</code></pre></div>

<p>Eventually, we did decide to just abandon Cloudflare for the server. We probably weren&rsquo;t going to be the target of a DDOS or anything. This also allowed us to do more secure things like pinning the server certificate in the application itself. Clearly, this is what we should have just done in the first place, but at the time we just wanted a stopgap solution.</p>

<p>I just still find it funny we were making people&rsquo;s phones go to 4chan.org everyday for more than a year.</p>

		</div>
		<small class="dateline">Posted: <time class="published dt-published" itemprop="datePublished" datetime="2015-12-25">2015-12-25</time></small>
		| <small class="commentline"><a href="/posts/cloudflare-shenanigans.html#isso-thread">Comments</a></small>
	</article>
	</article>
	
</div>
<nav class="postindexpager">
	<ul class="pager clearfix">
		
		
		<li class="next">
			<a href="/page/2.html">Older posts &rarr;</a>
		</li>
		
	</ul>
</nav>

</main>


	<footer id="footer" role="contentinfo">
		<p>
		<a rel="license" href="http://creativecommons.org/licenses/by-sa/3.0/deed.en_US">
			<img alt="CC-BY-SA" style="border-width:0" src="https://licensebuttons.net/l/by-sa/3.0/80x15.png">
		</a> &copy; 2018 Thomas Dy - Powered by <a href="http://gohugo.io">Hugo</a></p>
	</footer>
</div>

<script src="/assets/js/konami.js"></script>
<script>
var easter_egg = new Konami();
easter_egg.code = function() {
	var el = document.getElementById('thomas');
	if(el.className == "whoa") {
		el.className = "";
	}
	else {
		el.className = "whoa";
	}
	document.body.scrollTop = document.documentElement.scrollTop = 0;
}
easter_egg.load();



</script>


<script
	data-isso="https://isso.pleasantprogrammer.com/"
	src="https://isso.pleasantprogrammer.com/js/count.min.js">
</script>


</body>
</html>