Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Login bug #3350

Closed
japlic opened this issue May 20, 2024 · 8 comments
Closed

Login bug #3350

japlic opened this issue May 20, 2024 · 8 comments
Labels
community

Comments

@japlic
Copy link

japlic commented May 20, 2024
edited

NOTE

If this case is urgent, please subscribe to Subnet so that our 24/7 support team may help you faster.

Expected Behavior'

logging in

Current Behavior

Failed to load resource: the server responded with a status of 403 (Forbidden)
jsx-runtime.js:4 Refused to connect to 'https://unpkg.com/detect-gpu@5.0.38/dist/benchmarks/d-intel.json' because it violates the following Content Security Policy directive: "default-src 'self' 'unsafe-eval' 'unsafe-inline'". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback.

(anonymous) @ jsx-runtime.js:4
Show 1 more frame
Show less
jsx-runtime.js:4 Refused to connect to 'https://unpkg.com/detect-gpu@5.0.38/dist/benchmarks/d-intel.json' because it violates the document's Content Security Policy.
(anonymous) @ jsx-runtime.js:4
Show 1 more frame
Show less
api/v1/login:1

   Failed to load resource: the server responded with a status of 401 (Unauthorized)

Possible Solution

Context

logging in into the webapp

idk

Regression

Your Environment
@harshavardhana harshavardhana transferred this issue from minio/minio May 20, 2024
@prakashsvmx
Copy link
Member

could you capture mc admin trace -v -a --funcname "sts.*" <ALIAS>

is there any loadbalancer/proxy setup ?

@pjuarezd
Copy link
Member

pjuarezd commented May 20, 2024
edited

this is a dependency that is being blocked by the CSP policies, we are going to check it

@pjuarezd pjuarezd removed the triage label May 20, 2024
@japlic
Copy link
Author

japlic commented May 20, 2024

ummm its not mc

@japlic
Copy link
Author

japlic commented May 20, 2024

ok

@japlic
Copy link
Author

japlic commented May 20, 2024

Is there away to fix it

@pjuarezd
Copy link
Member

You can fix the Content Security Policy (see Mozilla docs for more info about CSP) by trusting the host https://unpkg.com, this can be done with mc`

mc admin config set ALIAS browser csp_policy="default-src 'self' 'unsafe-eval' 'unsafe-inline'; connect-src 'self' https://unpkg.com"

Don't forget to restart the service after the config change

mc admin service restart ALIAS

@pjuarezd
Copy link
Member

could you capture mc admin trace -v -a --funcname "sts.*" <ALIAS>

is there any loadbalancer/proxy setup ?

@japlic please provide this info @prakashsvmx is asking for, the CSP is not the reason you cannot login

@cesnietor
Copy link
Collaborator

Closing due to innactivity, please feel free to open a new one if the issue persists providing the requested information.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
community
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@pjuarezd @cesnietor @prakashsvmx @japlic