Autodesk Forge is now Autodesk Platform Services

Back to Community Blog

23 Oct 2019

Changes on OSS upload and download for Content-Type header [security improvement]

Starting November 11, the OSS upload PUT endpoints will return an HTTP 400 status code if content disposition inline and content types is one of the following:

  • application/xhtml+xml
  • image/svg+xml

If your application have already uploaded those files, it will now return an HTTP 400 status code on download.This change should not affect other content disposition formats.

This is in addition of the previous announcement made back in May where the following Content-Type where also excluded.

  • text/html, text/javascript, text/x-javascript,
  • application/javascript, application/x-javascript

Have questions? Please reach our support.

Tags:

Data Management API
Announcements
Security

Related Article

6 Nov 2022

Goodbye Cloud Credits. Hello Flex tokens.

Autodesk Platform Services (formerly Forge) has moved from Cloud Credits to Flex tokens on November 7 The following information is not...

Announcements
Pricing

Resources

Get help on StackOverflow
Explore code samples
Find a systems integrator
Contact Autodesk Platform Services