Tienden a requerir configuraciones más complejas, un gestor de cola de mensajes/trabajos, como RabbitMQ o Redis, pero te permiten ejecutar tareas en segundo plano en múltiples procesos, y especialmente, en múltiples servidores.

如果你的應用部署在公開的網際網路上，你不會「信任網路」而允許任何人在未經身分驗證的情況下發送具權限的請求。

攻擊者可以直接執行腳本向你的 API 發送請求，無需透過瀏覽器互動，因此你多半已經對任何具權限的端點做了防護。

在這種情況下，這種攻擊／風險不適用於你。

此風險與攻擊主要與應用只在本機或內部網路上執行，且「僅依賴此為保護」的情境相關。

## 允許沒有 Content-Type 的請求 { #allowing-requests-without-content-type }

若你需要支援未送出 `Content-Type` 標頭的客戶端，可以將 `strict_content_type=False` 以停用嚴格檢查：

{* ../../docs_src/strict_content_type/tutorial001_py310.py hl[4] *}

Client'ın request içinde bir bilgi göndermesi gerektiğinde ve bunu nasıl yapacağınızı bilemediğinizde, `httpx` ile nasıl yapılacağını aratabilirsiniz (Google) ya da HTTPX’in tasarımı Requests’e dayandığı için `requests` ile nasıl yapıldığını da arayabilirsiniz.

Sonra testlerinizde aynısını uygularsınız.

Örn.:

* Bir *path* veya *query* parametresi geçirmek için, URL’nin kendisine ekleyin.

        doThrow(new SmbException("query failed")).when(transport).isSMB2();
        assertThrows(SmbException.class, () -> transport.isSMB2());
        verify(transport, times(3)).isSMB2();
    }

    // Inflight requests count including edge values
    @ParameterizedTest
    @DisplayName("getInflightRequests returns various counts")
    @ValueSource(ints = { 0, 1, 42, 1000 })
    void getInflightRequests_counts(int count) {

        byte[] buffer = new byte[1024];

        int read = request.readBytesWireFormat(buffer, 0);

        // This method always returns 0 for requests
        assertEquals(0, read);
    }

    @Test
    @DisplayName("Test with unspecified file ID")
    void testWithUnspecifiedFileId() {
        setupMockConfig();

        } catch (final CIFSException ex) {
            throw new ServletException("Failed to initialize CIFS context", ex);
        }
    }

    /**
     * Handles file download requests for SMB files.
     * @param req the HTTP servlet request
     * @param resp the HTTP servlet response
     * @param file the SMB file to download
     * @throws IOException if an I/O error occurs
     */

policies for applications/users to interact with MinIO object storage.

Calling AssumeRoleWithWebIdentity does not require the use of MinIO root or IAM credentials. Therefore, you can distribute an application (for example, on mobile devices) that requests temporary security credentials without including MinIO long lasting credentials in the application. Instead, the identity of the caller is validated by using a JWT id_token from the web identity provider. The temporary security credentials returned...

	ErrUnknownWORMModeDirective = errors.New("unknown WORM mode directive")
	// ErrObjectLockMissingContentMD5 - indicates missing Content-MD5 header for put object requests with locking
	ErrObjectLockMissingContentMD5 = errors.New("content-MD5 HTTP header is required for Put Object requests with Object Lock parameters")
	// ErrObjectLockInvalidHeaders indicates that object lock headers are missing

import org.dbflute.optional.OptionalThing;
import org.lastaflute.web.Execute;
import org.lastaflute.web.response.JsonResponse;
import org.lastaflute.web.response.StreamResponse;

/**
 * Handles API requests for storage management in the Fess application.
 * Provides endpoints for listing, downloading, deleting, and uploading files.
 */
public class ApiAdminStorageAction extends FessApiAdminAction {

Et ces deux éléments, `scope` et `receive`, sont ce dont on a besoin pour créer une nouvelle instance de `Request`.

Pour en savoir plus sur `Request`, consultez [la documentation de Starlette sur les requêtes](https://www.starlette.dev/requests/).

///

La seule chose que fait différemment la fonction renvoyée par `GzipRequest.get_route_handler`, c'est de convertir la `Request` en `GzipRequest`.