Too many redirects. This can be due to your brower not accepting cookies or the misp-dashboard website is badly configured

MISP / misp-dashboard

A live dashboard for a real-time overview of threat intelligence from MISP instances

GNU Affero General Public License v3.0

192 stars 66 forks source link

Too many redirects. This can be due to your brower not accepting cookies or the misp-dashboard website is badly configured #137

Closed cudeso closed 4 years ago

cudeso commented 4 years ago

Running dashboard on a hosts which was able to run the previous versions of the dashboard. Setting authentication to False. Always getting "Too many redirects. This can be due to your brower not accepting cookies or the misp-dashboard website is badly configured".

No errors in Flask, despite Debug is enabled.

mokaddem commented 4 years ago

Hello, I suspect that your dashboard is not properly configured to use SSL. For the default configuration, cookie cannot be saved on non-secure website. If my suspicion is correct, you have two choices:

Fix your SSL configuration for the misp-dashboard server
Alternatively, you can specify to still save cookies on unsecured connections in config.cfg. Set session_cookie_secure to false
```
[Auth]
session_cookie_secure = False
```

cudeso commented 4 years ago

Indeed, setting session_cookie_secure = False was one way of fixing it.

I fixed the Flask server (via server.py) config also to support SSL via self-signed certificate. Requires a dependency (pyOpenSSL) and app.run(ssl_context='adhoc', host=server_host,.

mokaddem commented 4 years ago

Hey, that seems great! Could you submit a PR? :)