OpenID login fails if behind a SSL proxy in Chrome - google-chrome

I'm located behind a SSL proxy and am trying to use Chrome with StackOverflow, but I'm unable to authenticate to Google's server (or any others) and get the following error:
"Error 107
(net::ERR_SSL_PROTOCOL_ERROR): SSL
protocol error."
Can anyone explain to me why this would be happening? I am able to access https://chase.com with no issue, so I'm not sure why the SSO function is having an issue.
Additionally, I'm able to use IE to authenticate with SO and Google with no issue (how I'm posting this )
My query string looks like this.
https://www.google.com/accounts/o8/ud?openid.claimed_id=http://specs.openid.net/auth/2.0/identifier_select&openid.identity=http://specs.openid.net/auth/2.0/identifier_select&openid.return_to=https://stackoverflow.com/users/authenticate/%3Fs%3D61ca4f73-a29d-4c67-b316-6b003cf50bb3%26dnoa.userSuppliedIdentifier%3Dhttps%253A%252F%252Fwww.google.com%252Faccounts%252Fo8%252Fid&openid.realm=https://stackoverflow.com/users/authenticate/&openid.mode=checkid_setup&openid.ns=http://specs.openid.net/auth/2.0&openid.ns.alias3=http://openid.net/srv/ax/1.0&openid.alias3.if_available=alias1,alias2,alias3&openid.alias3.required=alias4&openid.alias3.mode=fetch_request&openid.alias3.type.alias1=http://schema.openid.net/namePerson&openid.alias3.count.alias1=1&openid.alias3.type.alias2=http://schema.openid.net/contact/email&openid.alias3.count.alias2=1&openid.alias3.type.alias3=http://axschema.org/namePerson&openid.alias3.count.alias3=1&openid.alias3.type.alias4=http://axschema.org/contact/email&openid.alias3.count.alias4=1

Related

Chrome version update causing Certificate Invalid Error NET://ER_CERT_INVALID

Post chrome version 105.x.x. update, a webpage is blocked by giving the error NET://ER_CERT_INVALID
What changes are expected to do with a certificate to get it passes and allow users to access it?
We need solution at server end itself not client end.
Downgrading to 104 works for us. But this is not a feasible solution to be given to the client.

Chrome wont open websocket (wss) from a domain to a subdomain

I have a domain x.com which is running a web application
There is an MQTT server running on subdomain mqtt.x.com, with websockets / wss all set up,
Using Chrome:
If I head to https://x.com, and run this in console:
let ws = new WebSocket('wss://mqtt.x.com')
I get the following error:
WebSocket connection to 'wss://mqtt.x.com/' failed:
If I go to a completeley different domain (such as stackoverflow.com) and run the command, it works fine.
In firefox/opera/edge, no errors, and it all works fine.
Is there any way to get a more verbose error from chrome?
Or any other idea to resolve this?
Edit
Clearing cookies seemed to solve this. still not really sure why.
Clearing Cookies seemed to be the answer.

CORS issue in Chrome 69.0.3497.100

Cannot work with firebase projects locally (I guess after Chrome auto-update). I guess it's not firebase related but Google services in general.
I get CORS error despite the fact I don't use it. CORS extension is disabled.
Error: https://securetoken.googleapis.com/v1/token?key=AIzaSyB2rVH5oURUwciXasOeGlTNW7Lye6naCn0: Response to preflight request doesn't pass access control check: The 'Access-Control-Allow-Origin' header has a value 'https://localhost:3000' that is not equal to the supplied origin. Origin 'http://localhost:3000' is therefore not allowed access.
I have tested Safari and it works, so the issue is Chrome related
I'm not an expert on this topic, but as far as I understand Chrome restricted http stuff even more.
I couldn't use https://localhost:3000 as there was no https server
I run webpack server for my js code and I've found solution to set HTTPS=true environment variable and it will enable the https option in webpack dev server.
Chrome doesn't respect such SSL certificate, but if you click Advanced -> Proceed then everything works and I don't get CORS issue any longer.
It may be a better option to generate some SSL certificate that Chrome respects so that you don't have to click Advanced -> Proceed every time, but I'm good with this for now as I can continue working on my projects.

Server Error in '/' Application. While trying to Access stackoverflow

I am writing this from my mobile, So I keep it short. After installing Avast Free Antivirus, I cannot open the Stackoverflow webpage anymore, I get the Error "Server Error in '/' Application. Runtime Error. Description: an Exception occurred while Processing your request.additonally, another Exception occured while executing the Custom Error Page for First Execution. The request has been Terminated. Help, i am a total web noob :(
I solved this by following this guide:
https://answers.microsoft.com/en-us/msoffice/forum/msoffice_o365admin-mso_other-mso_o365b/server-error-in-application-cleared-my/78b3a5d6-78d4-4c42-8a0f-638fae7c9fb7?auth=1
1.Open your browser (such as Chrome) -> use Ctrl +shift+ delete to clear all browser data again.
2.Go to Control Panel > User Accounts > Credential Manager > Windows Credentials > under Generic Credentials, remove all credentials.
3.Open Chrome and check the result again.
same problem happened!
Just use proxy ultrasurf extension! (Any other proxy also will work) No need to delete any certificates or credentials.
In case you delete any certificates or credentials it might cause some errors in future(some applications may crash).

How to Disable the Check for Server Certificate Revocation in windows phone 8

In my wp8 app,
I enter a open wifi which is operated by communication operator
blocked by a portal page that needs using account and password to log in
after I post some data to a https url
I have the ability to use the wifi network to access to internet freely.
Now,I encounter a problem:
before the https connection established successfully,it will be running the Online Certificate Status Protocol (OCSP)
OCSP needs to access to CA like veriSign to verify the server certificate status
but I have no internet access at this moment.
So,my app return a Webexception whose description is "The remote server returned an error: NotFound".I think it is because of the failure of OCSP.
Based on above,I want to find a solution to sovle this:
My point is to disable the OCSP mechanism,Do you know how to do this?
And I also would like to know if there is another solution to sovle the problem.
Hope your advice,Thanks!
The way you'd do that on .NET is to set the ServicePointManager.ServerCertificateValidationCallback delegate and perform the logic you want to perform. But, unfortunately that is not yet available on Windows Phone.
There are various uservoice suggestions related to this, for example:
http://windowsphone.uservoice.com/forums/101801-feature-suggestions/suggestions/2146033-allow-self-signed-and-corporate-certificates-for-s
http://windowsphone.uservoice.com/forums/101801-feature-suggestions/suggestions/4299617-client-ssl-certificate-authentication
They don't apply to you directly, but if they end up gaining access to ServicePointManager then you'll be able to do what you want to do.