Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

302 redirect infinite loop when embedded in an iframe with secure auth enabled #270

Open
theragingwookie opened this issue Dec 3, 2024 · 0 comments
Open

302 redirect infinite loop when embedded in an iframe with secure auth enabled #270

theragingwookie opened this issue Dec 3, 2024 · 0 comments
Labels
bug Something isn't working

Comments

@theragingwookie
Copy link

Current Behavior

The web app works perfectly with web auth enabled when accessed directly. However when embedded in even a trivial iframe attempts to access create an infinite loop of 302 redirects.

Expected Behavior

normal usability but within an iframe

Steps To Reproduce

config options passed:
FF_OPEN_URL: REDACTED
FF_KIOSK: '1'
SECURE_CONNECTION: '1'
WEB_AUTHENTICATION: '1'
WEB_AUTHENTICATION_USERNAME: 'REDACTED'
WEB_AUTHENTICATION_PASSWORD: 'REDACTED'

trivial iframe:

<iframe src="https://REDACTED:5800/" width="1600" height="1200" > </iframe>

Environment

  • OS:
  • OS version:
  • CPU:
  • Docker version:
  • Device model:
  • Browser/OS: chrome , firefox, duck duck go and edge all tried

Container creation

used existing published image lesage/firefox and passed environmental variables
FF_OPEN_URL: REDACTED
FF_KIOSK: '1'
SECURE_CONNECTION: '1'
WEB_AUTHENTICATION: '1'
WEB_AUTHENTICATION_USERNAME: 'REDACTED'
WEB_AUTHENTICATION_PASSWORD: 'REDACTED'

Container log

nginx log from inside the container:

10.79.26.6 - - [03/Dec/2024:22:20:19 +0000] "GET / HTTP/1.1" 302 138 "https://tool-access.sop.kyndryl.com:5800/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:133.0) Gecko/20100101 Firefox/133.0" "71.217.136.250:64290"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:24 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:25 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:25 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:25 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:25 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:25 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:25 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:33 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:33 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET / HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"
10.79.26.6 - - [03/Dec/2024:22:20:34 +0000] "GET /#/ HTTP/1.1" 302 138 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/130.0.0.0 Safari/537.36 Edg/130.0.0.0" "71.217.136.250:64307"

Container inspect

No response

Anything else?

No response
@theragingwookie theragingwookie added the bug Something isn't working label Dec 3, 2024
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@theragingwookie