I have just installed FreeIPA. When opening the main page, I get a
blank page (completely blank) with the following error in the console:
Error: Couldn't receive translations app.js:3:14945
translations
http://freeipa.home.lan/ipa/ui/js/freeipa/app.js?40702:3
I figured out that all files of the page were loaded correctly (loader.js, jsquery.js,
dojo.js etc ..) except file /ipa/i18n_messages which failed with the following error:
{
"error": {
"code": 911,
"data": {
"referer": "http://freeipa.home.lan/ipa/ui/"
},
"message": "Missing or invalid HTTP Referer,
http://freeipa.home.lan/ipa/ui/",
"name": "RefererError"
},
"id": null,
"principal": "UNKNOWN",
"result": null,
"version": "4.7.2"
}
The request to fetch this particular file is built as the following:
Host: freeipa.home.lan
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:66.0) Gecko/20100101 Firefox/66.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer:
http://freeipa.home.lan/ipa/ui/
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 60
DNT: 1
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
Now, when calling the same with
Referer:
https://freeipa.home.lan/ipa/ui/
(please not the "s" of https), I get what I suppose is the correct response, a
json of size 13.68KB with different texts inside.
QUESTION: Why is the loading of all components of the page with Referer:
http://freeipa.home.lan/ipa/ui/ works correctly except for /ipa/i18n_messages ?
/ipa/i18n_messages endpoint is an RPC backed by Python code. The rest is
a set of static files that can be loaded without proper referrer.
The question I would have to you is why you are trying to access web UI
via HTTP, not HTTPS? In a default configuration we do have redirect from
HTTP to HTTPS, so that web UI is never accessed over insecure HTTP port.
The only reason that port is open and required is OSCP responder.
--
/ Alexander Bokovoy
Sr. Principal Software Engineer
Security / Identity Management Engineering
Red Hat Limited, Finland