Open paregorios opened 5 days ago
paregorios
commented
5 days ago paregorios
commented
5 days ago This is the same sort of problem we were seeing with #536.
paregorios
commented
5 days ago After I made the followup change (see above) myself, the user went back to chrome, navigated to the page, tried editing it again, and still on save got redirected to https://isaw.nyu.edu/publications/isaw-monographs/ain-el-gedida/@@edit and sees:
Error 503 Backend fetch failed
Backend fetch failed
Guru Meditation:
XID: 11819936
Varnish cache serverI told the user to perform the following steps:
paregorios
commented
4 days ago User reports that following the above steps has allowed them to edit, save, and submit the publication item in question, their immediate problem is resolved.
But this error remains the same as it ever was, despite previous speculative interventions and adjustments.
paregorios
commented
4 days ago I have log extracts available from the relevant time period for the original error, but do not want to post them here.
alecpm
commented
4 days ago I think we might be able to better understand the issue with a more targetted elimination of browsing data. If the error appears and persists, could the try going into into Chrome DevTools -> Application -> Cookies and delete the cookies:
__ac_saml2_session_saml2_attributesidp_idIf they exist. They will need to login again, but I'm curious if that resolves the issue.
alecpm
commented
4 days ago It might also be helpful to know if he has any other cookies (besides _ga* and _gid from Google) on the .nyu.edu or isaw.nyu.edu domains.
paregorios
commented
2 days ago @alecpm Report from a user this morning:
I received the following error message when trying to visit a page on the ISAW website: "400 Bad Request". After refreshing, the page loaded, but before that I got this screen capture:
I got the user to give me screen captures of cookies in the dev too. I'll post these in a thread on slack.
alecpm
commented
1 day ago That Apache bad request error is one I’ve seen before on Dumbarton Oaks (well, the nginx version of the error), which is using a similar SAML setup (with Azure AD rather than Shibboleth). It’s sort of the reverse of the error we were seeing with the Varnish 503 errors in the backend response. There’s a limit to the size of input request headers that the web server allows (to prevent buffer overflow attacks). We’ll probably need to increase that limit to support this (truly remarkable) number of cookies.
alecpm
commented
1 day ago I've doubled the size of the request header size and line limits, which should prevent this error going forward. Let me know if it comes up again.
alecpm
commented
1 day ago Both the apache and varnish config updates are now included in the current and future (Plone 5.2/Python 3) ansible config.
Initial error occurred approximately between 1:40 and 1:51 pm US Eastern Time on Thursday, 7 November 2024.
what happened:
publishedcontent item todrafting(because they can't check out a working copy, see: #534)https://isaw.nyu.edu/publications/isaw-monographs/ain-el-gedida/edit?_authenticator=aef0cd360134bf5966eba2a923d4cbe7555b41cchttps://doi.org/10.18574/nyu/9781479848034.001.0001to a new line in theAccess URIs (one per line)field.https://isaw.nyu.edu/publications/isaw-monographs/ain-el-gedida/@@editand shown the following error message: