Project

General

Profile

Actions

Bug #37761

closed

Cockpit integration fails with AH: Unsafe URL with %3f URL rewritten without UnsafeAllow3F in foreman-ssl_error_ssl.log

Added by Adam Ruzicka about 2 months ago. Updated 19 days ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Foreman modules
Target version:
-
Found in Releases:

Description

Trying to access the web console takes the user to https://$foreman-fqdn/webcon/=$hostname?access_token=$token

Trying to access this url fails with 403, apparently mod_rewrite forbids rewrites where the request being rewritten contains %3F and the rewritten results has a ?. This behaviour can be turned off with a flag1.

[1] - https://httpd.apache.org/docs/2.4/rewrite/flags.html#flag_unsafe_allow_3f

Actions #2

Updated by The Foreman Bot about 2 months ago

  • Status changed from New to Ready For Testing
  • Assignee set to Adam Ruzicka
  • Pull request https://github.com/theforeman/puppet-foreman/pull/1177 added
Actions #3

Updated by The Foreman Bot about 2 months ago

  • Pull request deleted (https://github.com/theforeman/puppet-foreman/pull/1177)
Actions #4

Updated by Adam Ruzicka about 2 months ago

  • Project changed from Installer to Foreman Remote Execution
  • Category changed from Foreman modules to Foreman
Actions #5

Updated by Adam Ruzicka about 2 months ago

  • Red Hat JIRA set to SAT-27411
  • Pull request https://github.com/theforeman/foreman_remote_execution/pull/918 added
Actions #6

Updated by Evgeni Golov 20 days ago

  • Project changed from Foreman Remote Execution to Installer
  • Category changed from Foreman to Foreman modules
  • Pull request deleted (https://github.com/theforeman/foreman_remote_execution/pull/918)
Actions #7

Updated by The Foreman Bot 20 days ago

  • Pull request https://github.com/theforeman/puppet-foreman/pull/1185 added
Actions #8

Updated by The Foreman Bot 20 days ago

  • Fixed in Releases 3.13.0 added
Actions #9

Updated by Evgeni Golov 20 days ago

  • Status changed from Ready For Testing to Closed
Actions #10

Updated by The Foreman Bot 20 days ago

  • Pull request https://github.com/theforeman/foreman-installer/pull/980 added
Actions #11

Updated by The Foreman Bot 19 days ago

  • Fixed in Releases 3.12.0 added
Actions

Also available in: Atom PDF