Umbraco.Cloud.Issues icon indicating copy to clipboard operation
Umbraco.Cloud.Issues copied to clipboard

Published 20 hours ago verified publisher icon umbraco

Cryptographic issues on environements with basic auth

Open Frost117 opened this issue 3 years ago • 0 comments

Issue description

Throughout the Cloud history there have been rare cases where we are seeing users getting the following issue: image

Workaround: The workaround for the above issue, is to clear your cookies and the cache.

The above issue seems to happen randomly, however I have a hypothesis on how to reproduce the issue.

Prerequisite to reproduce: You'll need a VPN. At least 2 browser. And a Cloud project that has Basic Auth enabled.

The theory goes like this: When you log in via the basic auth to the set you'll receive some cookies. One of them is called: UaaSSecurity.

This cookie is tied to the ip adress when it was first set.

Therefore, when you log in with the same user but using a different IP you'll get a new cookie. Here is where the issue happens.

If you log in with a new IP adress but a new cookie is not assigned for w/e reason, you'll get the Cryptographic error.

Using the above method - I was only able to reproduce this once. Since then I have not been able to reproduce the issue, but it still happens for other projects on Umbraco Cloud.

Posting this issue to open a thread where users can input their experience and if any have had any luck with reproducing or have implemented a different work around than the clearing cache method.

Frost117 avatar Jan 05 '22 11:01 Frost117