SecWebSocketAccept
SecWebSocketAccept, typically observed as the Sec-WebSocket-Accept HTTP header, is used by a WebSocket server during the opening handshake to confirm that the server has accepted the upgrade from HTTP to the WebSocket protocol. It is defined in RFC 6455 as part of the handshake mechanism that establishes a WebSocket connection.
During the handshake, the client sends an upgrade request that includes the Sec-WebSocket-Key header, a base64-encoded
The client, upon receiving the server’s response, performs the same computation with its original key to verify
Sec-WebSocket-Accept is only relevant to the initial upgrade phase; after the handshake completes, data frames are