search

OAGi / Score

Score
MIT License
9 stars 6 forks source link

Whitelabel Error Page when trying to configure a VIP to our Score instance #1621

Closed dubnemo closed 5 months ago

dubnemo commented 5 months ago

Whitelabel Error Page This application has no explicit mapping for /error, so you are seeing this as a fallback.

There was an unexpected error (type=Unauthorized, status=401). See https://stackoverflow.com/questions/25356781/spring-boot-remove-whitelabel-error-page Response 271 seems most appropriate. References: https://github.com/spring-projects/spring-boot/blob/v1.1.5.RELEASE/spring-boot-autoconfigure/src/main/java/org/springframework/boot/autoconfigure/web/ErrorMvcAutoConfiguration.java
dubnemo commented 5 months ago

score-3.3.0-logs.zip

hakjuoh commented 5 months ago 
2024-05-26T14:27:27.296Z DEBUG 1 --- [nio-8080-exec-9] o.s.s.w.s.HttpSessionRequestCache        : Saved request http://172.29.34.20:8080/dana-na/auth/url_admin/welcome.cgi?continue to session
2024-05-26T14:31:07.330Z DEBUG 1 --- [nio-8080-exec-9] s.s.w.f.HttpStatusRequestRejectedHandler : Rejecting request due to: The request was rejected because the HTTP method "PROPFIND" was not included within the list of allowed HTTP methods [HEAD, DELETE, POST, GET, OPTIONS, PATCH, PUT]

2024-05-26T14:32:43.852Z DEBUG 1 --- [nio-8080-exec-4] o.s.s.w.s.HttpSessionRequestCache        : Saved request http://172.29.34.20:8080/servlet/?continue to session
26-May-2024 14:32:48.257 INFO [http-nio-8080-exec-4] org.apache.coyote.http11.Http11Processor.service Error parsing HTTP request header
score-ngnix-gateway-3.3.0 |  Note: further occurrences of HTTP request parsing errors will be logged at DEBUG level.
score-ngnix-gateway-3.3.0 |    java.lang.IllegalArgumentException: Invalid character found in the request target [/portal/webclient/index.html#/home ]. The valid characters are defined in RFC 7230 and RFC 3986

2024-05-27T23:32:02.900Z DEBUG 1 --- [io-8080-exec-11] o.s.s.w.s.HttpSessionRequestCache        : Saved request http://172.29.34.20:8080/cgi-bin/awstats.pl?PluginMode=:print+%22x%22%2e(1042+%2b+1099)%2e%22x%22;&continue to session

2024-05-27T23:32:02.901Z DEBUG 1 --- [io-8080-exec-22] o.s.s.w.s.HttpSessionRequestCache        : Saved request http://172.29.34.20:8080/cgi-bin/faxsurvey?/bin/cat%20/etc/passwd&continue to session

2024-06-02T14:40:13.627Z DEBUG 1 --- [io-8080-exec-45] o.s.s.w.s.HttpSessionRequestCache        : Saved request http://172.29.34.20:8080/CFIDE/adminapi/base.cfc?wsdl&continue to session
2024-06-02T14:40:13.889Z DEBUG 1 --- [io-8080-exec-45] o.s.s.w.s.HttpSessionRequestCache        : Saved request http://172.29.34.20:8080/?class.module.classLoader.URLs%5B-1%5D=0&continue to session
2024-06-02T14:40:13.909Z DEBUG 1 --- [io-8080-exec-45] o.s.s.w.s.HttpSessionRequestCache        : Saved request http://172.29.34.20:8080/cgi-bin/htgrep/file=index.html&hdr=/etc/passwd?continue to session
2024-06-02T14:40:13.945Z DEBUG 1 --- [io-8080-exec-45] s.s.w.f.HttpStatusRequestRejectedHandler : Rejecting request due to: The request was rejected because the URL contained a potentially malicious String "%3b"
2024-06-02T14:40:23.260Z DEBUG 1 --- [io-8080-exec-45] o.s.s.w.s.HttpSessionRequestCache        : Saved request http://172.29.34.20:8080/mgmt/tm/ltm/pool?continue to session
2024-06-02T14:40:24.181Z DEBUG 1 --- [io-8080-exec-45] s.s.w.f.HttpStatusRequestRejectedHandler : Rejecting request due to: The request was rejected because the URL was not normalized.
dubnemo commented 5 months ago

We have verified the root cause of the Whitelabel problem: image

When using the correct port 8880 the login screen appears.