-
-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Strange 401 and 404 errors #613
Comments
Hi, anything on this? |
I'll check this now. |
For the 404 part. There must be something wrong in your nginx setup. There is nothing that checks for the ui route which is used to serve the static html pages. |
I found an issue where a 403 is returned. That is fixed. 401 seems strange. I added some more logging if you want to check that. |
I don't see any new releases on GitHub, should i wait more or the fix for the 403 is somewhere else? i would also try the new logging for the 401 issues |
I am noticing that all podcasts names and episodes names on disk are "wrapped" into additional "'" characters. For example the podcast "My Podcast" episode "The First Episode" is instead called, on disk: Anyway i solved my 404 errors, not a nginx misconfiguration but my "podcasts" symlink got deleted during last update and reverted to an empty folder. Now fixed. I still get the 401 errors.... for my future reference: double check your podcasts folder still exist and it's correctly linked after an update! :) |
That is normal. It prevents globbing. Otherwise you can create malicious podcasts like ../../../etc/passwd and then override paths. The ' around the path segments prevents that. |
Never encountered any apps doing it that way. Also it breaks shell scripts, for example when trying to apply ffmpeg-normalize to episodes and such. I think it should be done by filtering input and rebasing relative paths to absolute ones and so on, instead of like this. It's just my two cents, but really feel weird. |
Describe the bug
Selfhosted, protected behind reverse-proxy (nginx).
Here is nginx setup:
I am on bare metal and start the service as user podfetch with the following script:
(the log file is basically empty, nothing of significance)
The web GUI seems to work fine, but i noticed that some images where missing so i did some analysis with firefox console and found out that the following URLs gives 401 errors:
The response seems pretty similar for them all:
Also i have the following 404 errors:
The response seems pretty similar for them all:
In the NGINX error log i have nothing, while in the access logs i see the same errors:
127.0.0.1 - - [13/Feb/2024:11:55:39 +0100] "GET /ui/assets/Homepage-H4t7scZk.js HTTP/1.1" 401 375 "https://podcast.mydomain.org/ui/home/view" "Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Firefox/102.0" "-"
127.0.0.1 - myuser [13/Feb/2024:11:55:41 +0100] "GET /podcasts/%27Geopop%20-%20Le%20Scienze%20nella%20vita%20di%20tutti%20i%20giorni%27/%2785%20-%20La%20sostanza%20piu%20amara%20del%20mondo%20e%20il%20Bitrex%20ed%20e%20contenuta%20nell%27alcol%20denaturato%27/image.png HTTP/1.1" 404 128 "https://podcast.mydomain.org/ui/home/view" "Mozilla/5.0 (X11; Linux x86_64; rv:102.0) Gecko/20100101 Firefox/102.0" "-"
In general i double checked my folders permissions and they seems correct (o+r for files or o+rx for folders) all the way to the assets folder.
Any hint on what is going on would be appreciated!
Reproduction
Anytime i access my server
System Info
Gentoo Linux with NGINX reverse proxy, everything exported on the internet with Let's Encrypt certificates over HTTPS. I am using reverse proxy authentication.
Used Package Manager
n/a
Validations
The text was updated successfully, but these errors were encountered: