I'm using a webservice to get information from the server and got this error:
Error: Request for resource at http://backoffice.dev144.com/PPIWS/B144_MAPWS.ASMX by requestor from http://maps.localhost:10000/B144/Images_v2/b144_map.swf/[[DYNAMIC]]/4 is denied due to lack of policy file permissions.
*** Security Sandbox Violation ***
Connection to http://backoffice.dev144.com/PPIWS/B144_MAPWS.ASMX halted - not permitted from http://maps.localhost:10000/B144/Images_v2/b144_map.swf
Of course i put crossdomain file in the main server directory that looks like this:
allow-access-from domain="*" secure="false"/
Can anyone tell me why it's not working?
As I see you try to login to a different subdomain http://backoffice.dev144.com/
If you have the crossdomain.xml on the main //www website this will not work.
You need to copy the crossdomain.xml also to the backoffice.dev144.com/crossdomain.xml
Related
I am having a recurring issue with shinyproxy (currently 2.5.0 - based on Springboot) hosted within a kubernetes cluster (currenty a single node). I'm using Auth0 with SAML. Traffic goes through a Nginx ingress controller that does TLS termination and has a fairly basic configuration. What I don't understand is that I will get the following error, but only once in a while. If I try to login, I will get the error, but then after that, if I go back to the login page and try to log in again, everything works fine.
o.s.security.saml.log.SAMLDefaultLogger : AuthNResponse;FAILURE;[Auth0 URN];;;org.opensaml.common.SAMLException: InResponseToField of the Response doesn't correspond to sent message a12g399012cidi7i2i3ha3ha4h6e6jc
at org.springframework.security.saml.websso.WebSSOProfileConsumerImpl.processAuthenticationResponse(WebSSOProfileConsumerImpl.java:175)
at org.springframework.security.saml.SAMLAuthenticationProvider.authenticate(SAMLAuthenticationProvider.java:88)
at org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:199)
at org.springframework.security.authentication.ProviderManager.authenticate(ProviderManager.java:219)
...
This made me think of a cookies problem, however adjusting the shinyproxy server/proxy configuration for cookies did not change anything. Shinyproxy configuration has:
server:
secure-cookies: true
proxy:
same-site-cookie: None
In the browser when I try to log in I get the following error message:
Error
Status code: 200
Message: Error validating SAML message
Stack Trace:
org.springframework.security.authentication.AuthenticationServiceException: Error validating SAML message
...
Anyone has an idea of what I am missing? I would really appreciate it! Thank you!
First, when trying to deploy my code to the target url in gcloud, the deployment process hangs.
The target url has the suffix appspot.com.
When I ping the target url, I get a request timeout. When I type the target url in my browser, I get a 502 error: server error.
When I deployed the same code to a different test environment in dialogflow, everything seemed to work fine. However when I try deploying again to this url (it is the correct url obtained from the webhook fulfilment url in dialogflow), I get this error:
Updating service [default] (this may take several minutes)...failed.
ERROR: (gcloud.app.deploy) Error Response: [4] Timed out waiting for
the app infrastructure to become healthy.
Everything else, including the node js code and the dialogflow configurations are the same between the two environments I am deploying to, except for the webhook fulfilment url.
Does anyone know what the issue can be narrowed down to? And please let me know if I can include any more useful information.
My guess is that the server is down for that specific URL. One thing to note is that I am using V1 dialogflow.
Resolved, it ended up being a firewall issue for that specific url.
I need an cfajaxproxy interface to my server (to pass it data without having to do a submit on a page). Hopefully cfajaxproxy is the correct way to go?
To learn this, I first modified an example tutorial shown at http://tutorial13.learncf.com/, but after getting an "template denied access" error, I decided to simply use the tutorial directly as is, which just has two small files (that can be cut and pasted right from his tutorial). Unfortunately I get the same error with his tutorial (even though he has it running on his site as a demo). So ??
I'm putting the proxy.cfc file right in the (main) wwwroot directory I am accessing (first time using a cfc). Do I need to ask the hosting company to allow something on the server (which is running ColdFusion 8)?
Thanks. Error Details are:
Error Occurred While Processing Request
Security: The requested template has been denied access to C:/Coldfusion8/wwwroot/WEB-INF/cfclasses/cfproxy2ecfc771136334.class.
The following is the internal exception message: access denied (java.io.FilePermission C:/Coldfusion8/wwwroot/WEB-INF/cfclasses/cfproxy2ecfc771136334.class read)
ColdFusion cannot determine the line of the template that caused this error. This is often caused by an error in the exception handling subsystem.
Resources:
Check the ColdFusion documentation to verify that you are using the correct syntax.
Search the Knowledge Base to find a solution to your problem.
Browser Mozilla/5.0 (Windows NT 6.0) AppleWebKit/537.17 (KHTML, like Gecko) Chrome/24.0.1312.57 Safari/537.17
Remote Address 72.201.113.149
Referrer
Date/Time 22-Feb-13 12:42 AM
Stack Trace
java.security.AccessControlException: access denied (java.io.FilePermission C:/Coldfusion8/wwwroot/WEB-INF/cfclasses/cfproxy2ecfc771136334.class read) at cfdemo2ecfm1260454926.runPage(C:/Websites/202350mu7/wwwroot/sf/demo.cfm:1)
java.security.AccessControlException: access denied (java.io.FilePermission C:\Coldfusion8\wwwroot\WEB-INF\cfclasses\cfproxy2ecfc771136334.class read)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:374)
at java.security.AccessController.checkPermission(AccessController.java:546)
at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
at java.lang.SecurityManager.checkRead(SecurityManager.java:871)
...
This is a security sandbox issue, you need to contact your host and make sure you have a sandbox with access to this folder.
I'm using Flex 3 and I want to access a webservice on another server. I've imported the webservice (Data->Import) succesfully into my application, but when I'm accessing the functions in the code itself I get the following error:
Warning: Domain ... does not specify a meta-policy. Applying default meta-policy "all".
This configuration is deprecated ...
Error: Request for resource at ... by requestor from ... is denied due to lack of policy file permissions
Security sendbox violation
Connection to ... halted - not permitted from ...
I've put the "crossdomain.xml" policy file in the root directory of the server that the web service is installed on. This is the content of this file:
<!DOCTYPE cross-domain-policy SYSTEM "http://www.macromedia.com/xml/dtds/cross-domain-policy.dtd">
<cross-domain-policy>
<allow-access-from domain="*" secure="false" />
</cross-domain-policy>
I've called the Security.loadPolicyFile() in my code and am still getting this error. Any suggestions?
Try this:
<?xml version="1.0" ?>
<cross-domain-policy>
<site-control permitted-cross-domain-policies="master-only"/>
<allow-access-from domain="*"/>
<allow-http-request-headers-from domain="*" headers="*"/>
</cross-domain-policy>
Can you check if you are not getting a 404 when requesting for the crossdomain.xml file. Just type http://servername:port/crossdomain.xml in your browser if you are getting the xml file in the browser and not a 404.
I try to install my WebService on IIS7, but I get this error:
HTTP Error 403.14 - Forbidden The Web server is configured to not list the contents of this directory
on IIS5 I know how to do it, can I get any direction ?
You should use the correct URL, such as http://localhost/somepath/someservice.asmx (or .svc) If you don't specify the service part, of course you get 403.14.