Comments (4)
Trace level debug for 1 call
[trace] p.c.s.n.PlayDefaultUpstreamHandler - Http request received by netty: DefaultHttpRequest(chunked: false)
POST /navbar HTTP/1.1
Host: localhost:9000
Connection: keep-alive
Content-Length: 73
Accept: application/json, text/plain, */*
Origin: http://localhost:9000
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.95 Safari/537.36
Content-Type: application/json;charset=UTF-8
Referer: http://localhost:9000/
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.8
[trace] p.c.s.n.PlayDefaultUpstreamHandler - Serving this request with: <function1>
[trace] p.a.mvc.Action - Invoking action with request: POST /navbar
[error] application -
! @72m5pfj17 - Internal server error, for (POST) [/navbar] ->
play.api.UnexpectedException: Unexpected exception[JsonParseException: Unexpected character ('<' (code 60)): expected a valid value (number, String, array, object, 'true', 'false' or 'null')
at [Source: [B@513a590d; line: 1, column: 2]]
at play.api.http.HttpErrorHandlerExceptions$.throwableToUsefulException(HttpErrorHandler.scala:261) ~[com.typesafe.play.play_2.11-2.4.6.jar:2.4.6]
at play.api.http.DefaultHttpErrorHandler.onServerError(HttpErrorHandler.scala:191) ~[com.typesafe.play.play_2.11-2.4.6.jar:2.4.6]
at play.api.GlobalSettings$class.onError(GlobalSettings.scala:179) [com.typesafe.play.play_2.11-2.4.6.jar:2.4.6]
at play.api.DefaultGlobal$.onError(GlobalSettings.scala:212) [com.typesafe.play.play_2.11-2.4.6.jar:2.4.6]
at play.api.http.GlobalSettingsHttpErrorHandler.onServerError(HttpErrorHandler.scala:94) [com.typesafe.play.play_2.11-2.4.6.jar:2.4.6]
Caused by: com.fasterxml.jackson.core.JsonParseException: Unexpected character ('<' (code 60)): expected a valid value (number, String, array, object, 'true', 'false' or 'null')
at [Source: [B@513a590d; line: 1, column: 2]
at com.fasterxml.jackson.core.JsonParser._constructError(JsonParser.java:1487) ~[com.fasterxml.jackson.core.jackson-core-2.5.4.jar:2.5.4]
at com.fasterxml.jackson.core.base.ParserMinimalBase._reportError(ParserMinimalBase.java:518) ~[com.fasterxml.jackson.core.jackson-core-2.5.4.jar:2.5.4]
at com.fasterxml.jackson.core.base.ParserMinimalBase._reportUnexpectedChar(ParserMinimalBase.java:447) ~[com.fasterxml.jackson.core.jackson-core-2.5.4.jar:2.5.4]
at com.fasterxml.jackson.core.json.UTF8StreamJsonParser._handleUnexpectedValue(UTF8StreamJsonParser.java:2485) ~[com.fasterxml.jackson.core.jackson-core-2.5.4.jar:2.5.4]
at com.fasterxml.jackson.core.json.UTF8StreamJsonParser._nextTokenNotInObject(UTF8StreamJsonParser.java:801) ~[com.fasterxml.jackson.core.jackson-core-2.5.4.jar:2.5.4]
from cerebro.
Figured it out...
So the /connect/hosts
end point returns the username and password for the cluster. The client (in this case, my browser) then uses this info as a POST payload to get info for the cluster and actually load the data for the cluster.
Since as currently written, cerebro does not support binding via SSL without a reverse proxy in front, credentials are sent over the wire in plain text unknowingly to any user of cerebro
As a side note, 401's should be handled correctly and a descriptive error should be output
Solution:
Cerebro should not pass the auth creds to the client and instead look up the creds in the config when making an outbound request to the elasticsearch cluster.
from cerebro.
@shortdudey123 this should all be fixed on 5.1 :)
from cerebro.
Awesome, looks much better!
Looks like 795df31 fixed this issue
from cerebro.
Related Issues (20)
- yaml payloads
- unknown error HOT 2
- Angular 1.8.2 is deprecated
- sqlite dependency & fapolicyd
- authentication problems HOT 1
- Akka licence change HOT 1
- Feature request: Set routing allocation to null when enabling allocation from cerebro HOT 1
- Elasticsearch 8.x version HOT 4
- Create multi-arch docker image for Apple's M1 CPU
- Same with JDK18
- elasticsearch 开启密码访问,每次刷新都需要重新输入账号密码 HOT 1
- Index template based on component_template seems to be not supported
- When will it be updated?
- Can't load the ES overview pages with "error": "HTTP header is larger than 8192 bytes." HOT 2
- Not and Issue but a Thank You 👍 HOT 6
- Multi-Cluster Dropdown
- can not find index template
- Update to cerebro to resolve security vulnerabilitys HOT 2
- How to use the pkcs12 certificate two-way authentication HOT 1
- How to pronounce Cerebro? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from cerebro.