403 Error on Google Login Callback in Rais' omniauth

Asked 1 years ago, Updated 1 years ago, 97 views

Rais omniauth implements Google login and works fine in the local environment.
In the server environment (CentOS, Nginx), a 403 error is displayed when a callback is made to the following URL after Google authentication.

https://dummy.com/auth/google_oauth2/callback?xxxxxxx&scope=email+https%3A%2F%2Fwww.googleapis.com&xxxxx

403 Forbidden Situation

403 Forbidden Situation

In the course of our investigation, we found that accessing URLs containing "://" as shown below, regardless of omniauth or Google login, results in similar errors.

(Non-encoded)
https://dummy.com/?a=https://
(encoding)
https://dummy.com/?a=https%3A%2F%2F

I am wondering if there is a security setting for the server that prohibits access including :// in the query parameters, but if you have any, could you please let me know?

There are no Rails or Nginx error logs or access logs for this issue.

environment

CentOS 7
Nginx
Rails

ruby-on-rails centos nginx security url

2022-09-30 13:55

1 Answers

As a result of the investigation, the problem was that the AWS WAF configuration blocked URLs containing ://.

2022-09-30 13:55

If you have any answers or tips

Popular Tags
python x 4647
android x 1593
java x 1494
javascript x 1427
c x 927
c++ x 878
ruby-on-rails x 696
php x 692
python3 x 685
html x 656
Popular Questions

539 Understanding How to Configure Google API Key

549 Scrap text information after the "View More" button when searching in the Yahoo! News search window

968 In Java servlet, when SHA-256 sends WW-Authenticate header for digest authentication, the client does not return the result.

536 Unable to install versioned in Google Colab

538 PHP ssh2_scp_send fails to send files as intended

© 2024 OneMinuteCode. All rights reserved.