Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Warnings and errors when logging out of the app #4108

Open
juliamagan opened this issue Apr 27, 2022 · 5 comments
Open

Warnings and errors when logging out of the app #4108

juliamagan opened this issue Apr 27, 2022 · 5 comments
Labels
qa/known Issues that are already known by the QA team qa/report QA Team: Reporting possible bug type/bug Bug issue

Comments

@juliamagan
Copy link
Member

Wazuh Elastic Rev Security
4.3 7.x 4301-1 Basic, ODFE, Xpack
Browser
Firefox

Description
When we log out of the app, we get several warnings and errors on the console.

Preconditions

  1. Demo environment

Steps to reproduce

  1. Log out

Actual Result

Cookie “security_authentication” has been rejected because it is already expired. 
Cookie “security_authentication” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite 
Cookie “security_authentication” has been rejected because it is already expired. 
Cookie “security_authentication” has been rejected because it is already expired. 
Some cookies are misusing the recommended “SameSite“ attribute 
Content Security Policy: The page’s settings blocked the loading of a resource at inline (“script-src”). 
Cookie “security_authentication” has been rejected because it is already expired.
^ A single error about an inline script not firing due to content security policy is expected! 
window.controllers/Controllers is deprecated. Do not use it for UA detection. 
This page uses the non standard property “zoom”. Consider using calc() in the relevant property values, or using “transform” along with “transform-origin: 0 0”. 
XHRGEThttps://demo.wazuh.info/api/v1/restapiinfo
[HTTP/1.1 401 Unauthorized 202ms]

Cookie “security_authentication” has been rejected because it is already expired. 
Error: Unauthorized
    _construct https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    Wrapper https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _createSuperInternal https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    HttpFetchError https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _callee3$ https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    tryCatch https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    invoke https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    method https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    fetch_asyncGeneratorStep https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _next https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    promise callback*fetch_asyncGeneratorStep https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _next https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    promise callback*fetch_asyncGeneratorStep https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _next https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    fetch_asyncToGenerator https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    fetch_asyncToGenerator https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    fetchResponse https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _callee$ https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    tryCatch https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    invoke https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    method https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    fetch_asyncGeneratorStep https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _next https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    promise callback*fetch_asyncGeneratorStep https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _next https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    fetch_asyncToGenerator https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    fetch_asyncToGenerator https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _callee2$/</< https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _callee2$ https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    tryCatch https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    invoke https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    method https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    fetch_asyncGeneratorStep https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _next https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    fetch_asyncToGenerator https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    fetch_asyncToGenerator https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    Fetch https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    shorthand https://demo.wazuh.info/1/bundles/core/core.entry.js:6
    _callee5$ https://demo.wazuh.info/1/bundles/plugin/securityDashboards/securityDashboards.plugin.js:13
    tryCatch https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    invoke https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    method https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    public_plugin_asyncGeneratorStep https://demo.wazuh.info/1/bundles/plugin/securityDashboards/securityDashboards.plugin.js:13
    _next https://demo.wazuh.info/1/bundles/plugin/securityDashboards/securityDashboards.plugin.js:13
    public_plugin_asyncToGenerator https://demo.wazuh.info/1/bundles/plugin/securityDashboards/securityDashboards.plugin.js:13
    public_plugin_asyncToGenerator https://demo.wazuh.info/1/bundles/plugin/securityDashboards/securityDashboards.plugin.js:13
    _hasApiPermission https://demo.wazuh.info/1/bundles/plugin/securityDashboards/securityDashboards.plugin.js:13
    hasApiPermission https://demo.wazuh.info/1/bundles/plugin/securityDashboards/securityDashboards.plugin.js:13
    _callee4$ https://demo.wazuh.info/1/bundles/plugin/securityDashboards/securityDashboards.plugin.js:13
    tryCatch https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    invoke https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1
    method https://demo.wazuh.info/1/bundles/plugin/reportsDashboards/reportsDashboards.plugin.js:1

XHR GET https://demo.wazuh.info/api/v1/configuration/account HTTP/1.1 401 Unauthorized 291ms]

Cookie “security_authentication” has been rejected because it is already expired. 

XHR GET https://demo.wazuh.info/api/v1/configuration/account [HTTP/1.1 401 Unauthorized 185ms]

XHR GET https://demo.wazuh.info/api/v1/multitenancy/tenant [HTTP/1.1 401 Unauthorized 216ms]

Cookie “security_authentication” has been rejected because it is already expired. 
Cookie “security_authentication” has been rejected because it is already expired.

failed to get user tenant: Error: Unauthorized
```
@juliamagan juliamagan added type/bug Bug issue qa/report QA Team: Reporting possible bug labels Apr 27, 2022
@jmv74211 jmv74211 moved this to Triage in Release 4.3.0 Apr 27, 2022
@gdiazlo
Copy link
Member

gdiazlo commented Apr 29, 2022

Reproduced in 4.2.6 environment.

@Dwordcito
Copy link
Member

I see this same problem on the login screen. It seems to come from the login screen than because of the logout.

Detected during the E2E test. wazuh/wazuh#14674

Screencast.from.18-08-22.17.39.47.webm

@giper45
Copy link

giper45 commented Sep 16, 2022

Hi,
we have the same problem, but for a stable version of Wazuh on a docker production environment:. Here the list of images:

    image: wazuh/wazuh-odfe:4.1.5
    image: wazuh/wazuh-odfe:4.1.5
    image: amazon/opendistro-for-elasticsearch:1.13.2
    image: amazon/opendistro-for-elasticsearch:1.13.2
    image: amazon/opendistro-for-elasticsearch:1.13.2
    image: wazuh/wazuh-kibana-odfe:4.1.5
    image: nginx:stable  

Do you have any solution about it?

@mauromalara
Copy link

Same problem, but in Safari:

image

@BelenValdivia
Copy link

Same problem in 4.4.2:
image

@mauromalara mauromalara added the qa/known Issues that are already known by the QA team label Aug 31, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
qa/known Issues that are already known by the QA team qa/report QA Team: Reporting possible bug type/bug Bug issue
Projects
No open projects
Status: Known issues
Development

No branches or pull requests

6 participants