How to avoid being identified as a bot?

Giacomo_Debidda1 · September 28, 2023, 5:04pm

I’m trying to run a WebPageTest audit on this product page:
https://www.leroymerlin.it/prodotti/giardino-e-terrazzo/barbecue-forni-e-accessori/tutti-i-barbecue/barbecue-in-muratura-sarom-fuoco-arlon-l-58-x-p-58-x-h-199-cm-86295043.html

Unfortunately, it seems that the Leroy Merlin website identities WPT as a bot. Or, more precisely, it’s DataDome the one who blocks WPT.

Every time I try I get an HTTP 403 and these response headers:

server: DataDome
set-cookie: datadome=COOKIE_VALUE_HERE; Max-Age=31536000; Domain=.leroymerlin.it; Path=/; Secure; SameSite=Lax
x-datadome: protected

Is there anything I can do to prevent this?

Related topic: Trying to test login of a page but cant get past captcha

Drit_Suljoti · September 28, 2023, 5:07pm

Sadly there is no guaranteed way to do so. The bot protection tools are meant to stop automated access of the webpages by non humans.

It is always best to go into the service doing the bot protection and whitelisting Webpagetest. Most tools allow you to so through various means, user agent might be the easiest and the most common every tool has.