I am analyzing header tags for submitting forms online in order to better understand how htmlhttp forms work- signing in to gmail, yahoo mail, and amazon, using the network tab of google developer tools, to view the http headers of requests and responses, and learn where they come from. I am seeing very peculiar behavior in my browser's (chrome)request headers when signing into amazon. The form data, always has the following two header names appended to the second and third to last places of the form data query: x=(some random number), and y=(some random number).
There are no input tags getting dynamically generated, since when i tell google chrome to break on all subtree modifications, the site still sends off the post with the added parameters before anything gets modified, BEFORE crashing.
There also is NO ajax call which is causing dynamically added data to be appended to the form post.
There is no way to provide pure binary data in the POST, however with the combination of JSON and a server side script able to parse JSON into a hash array, you can fake it using a hidden form field.