The expected 'Content-Type' header that should be returned is application/json. #66458
Comments
|
Couldn't agree more. Wasted a bunch of my time. |
|
@taylorchasewhite Thanks for your feedback! We will investigate and update as appropriate. |
|
Thank you @taylorchasewhite . We have been waiting on this for a while now. Was just about to create an issue, till I came across yours. Not sure why it was considered ok to close the other issues, when users have been dealing with this for almost a year. |
|
+1 |
souravmishra-msft
added
assigned-to-author
and removed
awaiting-product-team-response
labels
|
Hi @souravmishra-msft & @rwike77, just checking in on this, have you guys decided the direction for this issue (I know addressing it may take some time), but I'd like to know roughly the path forward here. Thanks! |
|
+1 |
|
Hello @taylorchasewhite and @antiGithub - Thank you for bringing attention to this issue. We just confirmed with our engineering team that they rolled out a code fix a month ago for a fix that seems related to this. Their request is for you to retry to determine if that fix that was applied also fixes this issue and to please let us know here so we can further follow up. Thank you. |
|
Sweet! Thanks @CeleseteDG. I can confirm this now works. Thanks a lot, I'm closing with this comment, but please feel free to make whatever changes on your end. |
|
I'm still seeing this issue. I'm returning What is going on here? |
|
I have copy pasted the content on to static folder of the website. I still get the above error. What is the expected content type? I have hosted the file in below location - https://compensa.io/.well-known/microsoft-identity-association.json Headers:
|
Same and it's now April 10,2023 |
|
@ShaneMcNamara and @ajainvivek did you ever find a solution for this? |
I stopped using Azure 😉 |
|
@ajainvivek and @ShaneMcNamara - My sincerest apologies. This original issue has been closed and so it's not showing up in our active GitHub issues query and we lose track of the ongoing thread or questions that you have here. If you don't mind, can either of you please open a new issue against the article you're following or finding incorrect info on and provide for us repo steps or other info to investigate against on our end? Thank you for your patience and my sincerest apologies again for missing all the chat after the issue has been closed. |
|
@CelesteDG can you refer to, and reopen, this issue -- #39665? It has the technical information you are requesting. I can reopen this one if you prefer. |
|
Hello @taylorchasewhite - If you wouldn't mind reopening this issue, that would be great. I can then reassign it to someone on my team to investigate and to look into the thread in 39665 as well. Thank you for your help and ongoing feedback. |
|
Posting this here for folks who spent hours, searching different threads of the same issue. Add a custom domain and just update the TXT or MX records in your DNS and Azure will verify the domain that way instantly. |
|
Apologies, we totally lost track of the conversation here and in the other issue. I'm working to get a hold of someone in engineering to get some help. |
|
@rmnegatives, @ShaneMcNamara and @ajainvivek I apologize for the inconvenience caused. I am one of the engineers working on the Publisher Domain Verification feature. Based on the description provided in the GitHub issue, I do not have sufficient information to investigate the issue further or reproduce it. To assist me in identifying the root cause of the issue, could you kindly provide me with the file you are hosting in the path /.well-known/microsoft-identity-association.json, the site that you host the file or the trace ID, if you have it? This information will help me to narrow down the issue and work towards finding a solution. |
|
@TrangHoangMicrosoft |
|
@TrangHoangMicrosoft there's a good description from 2021 here: https://stackoverflow.com/a/58843651 The verification service requires a Content-Length header in responses, but Content-Length is not included in HTTP 1.1 chunked responses per the HTTP spec. In my case, this breaks verification when using Cloudflare: https://tplant.com.au/.well-known/microsoft-identity-association.json |
|
Hi @rmnegatives, I looked into the link you provided and noticed that you may be using Amazon S3 to host your server. When you added the JSON to the path .well-known/microsoft-identity-association.json, you did not specify the content type. As a result, Amazon S3 automatically assumed that the file was a text file and added the content type as "text/html" instead of "application/json". Additionally, the response that you received with the following headers: "accept-ranges: bytes age: 802 content-length: 111 content-type: application/json date: Tue, 11 Apr 2023 01:00:27 GMT etag: "309ad933671cbb2cfeac2834791f8295" last-modified: Tue, 11 Apr 2023 00:45:01 GMT server: AmazonS3" may have been misleading because the call was made from the customer to the server, which may have added some content type that wasn't accurate. However, when we make a call from our server to another server, the content type is different. Let me know if you have any questions! |
|
Hi @pl4nty, we apologize for the inconvenience caused to you. We have identified the root cause of the problem you faced and it was due to our strict validation of the content length. However, we have taken measures to modify our system and ensure that you do not face this problem again in the future. Please note that the code change updates may take a few weeks to reflect on your end. We request your patience until the update is complete. If you still encounter any issues, please feel free to let us know. |
|
TrangHoangMicrosoft, you are still not getting it. The Content-Type is irrelevant. It should not be considered or used in any way. There is absolutely no reason to enforce some kind of restriction on it, and it is driving people nuts. |
What measures are you referring to / do you have a PR / change description here to share with us? Want to make sure you're fixing this in a way that works for everyone, as @Snuff-Daddy alludes to. |
|
Hi @Snuff-Daddy, Checking the content type of a website is important for several reasons. Firstly, it ensures that the data received by our end is appropriate and can be processed correctly. Different types of data require different processing techniques, so knowing the content type helps ensure that the data is handled correctly and efficiently. Secondly, knowing the content type can help with security. If a website sends unexpected data with a different content type than what was expected, it could be a sign of a malicious attack or a mistake in the server configuration. For example, if an attacker sends a malicious executable file with a disguised content type, it could bypass security measures that are expecting only certain content types. Checking the content type can help identify these issues and prevent security vulnerabilities. In summary, checking the content type of a website is important for ensuring proper data processing and for identifying and preventing security vulnerabilities. |
This comment was marked as abuse.
This comment was marked as abuse.
|
Hello, everyone. We really value and appreciate your feedback and while we're not able to address them right away, they are in our queue and we review them and work to prioritize them alongside our other work items. I would just like to request that we please keep the discussion civil. Thank you for your understanding. |
Hello @TrangHoangMicrosoft |
|
@TrangHoangMicrosoft is the rollout complete? I'm still seeing the same content-length error message a few minutes ago (trace is zKn0KUeyKOXxIhoL23rCtY). The app is registered to a personal account so I'm not sure which tenant it's in |
|
@TrangHoangMicrosoft any feedback on how the code change rollout is going? I have been monitoring this thread for weeks, in hope that there is an update on the matter, as we are experiencing the exact same issue as that of @pl4nty where the Content-Length is not included in HTTP 1.1 chunked responses. |
|
@TrangHoangMicrosoft I tried again today with the same error. I've been blocked by this issue for almost two months. If the resolution timeline has changed, please advise so I can start working on the DNS verification method. That method may take months for me, or not even be possible. |
|
@pl4nty @clemvdm I spoke with Trang briefly yesterday. She said that she pushed a fix out a couple weeks ago, but it takes a while (up to 3 months) to fully deploy across all regions. So it may be that the fix hasn't rolled out to the regions you're using. She said she'd try to check on progress of the rollout. @TrangHoangMicrosoft can you update? Thanks. |
|
Thanks @rwike77. I'm in APAC and happy to keep waiting, just need an approx timeline I can take to stakeholders (or updates if it slips). Cheers |
|
@TrangHoangMicrosoft tells me that the fix has rolled out to all regions, now. I'll close the issue now. If people are still experiencing problems, feel free to re-open the issue and tag @rwike77 and @TrangHoangMicrosoft. #please-close |
|
Gee, all it took was 3 years and lots of complaints to fix something that was obviously broken. 3 years of trying to convince Microsoft of the obvious, and them finally getting around to lifting a finger to fix it. And how does a fix take 3 months to deploy? If ever there was a company that doesn't deserve its place of prominence, it's Microsoft. Their employees are not competent, not intelligent. |
This is a problem. For any application that is deployed use static web files on a deployment service, the developer is unable to modify the response headers. As a result developers cannot verify their publisher domain without changing their deployment strategy.
This issue is loosely related to 39665.
Please fix this issue, for the following reasons:
Thank you,
Taylor
Document Details
⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.
The text was updated successfully, but these errors were encountered: