C
C#2y ago
KKSK@🌸🎵🌸🎵🌸

HTTPS Local Network No Content Case

I have an AspNetCore HttpGet Api that returns NoContent; is a simple Api for registering an number to the server. I also have other HttpGet Api that returns contents. 
1) When the `NoContent` Api is accessed with domain name and https under the same machine where the AspNetCore Web Api is running, I get an error on the browser indicating `ERR_HTTP2_PROTOCOL_ERROR`. And the number is not registered.
This is by accessing the Api on the same machine through chrome with the URL of https://example.com
No option of `Proceed to localhost (unsafe)` is available.
1) When the `NoContent` Api is accessed with domain name and https under the same machine where the AspNetCore Web Api is running, I get an error on the browser indicating `ERR_HTTP2_PROTOCOL_ERROR`. And the number is not registered.
This is by accessing the Api on the same machine through chrome with the URL of https://example.com
No option of `Proceed to localhost (unsafe)` is available.
2) When the `NoContent` Api is accessed with `localhost` and either http or https under the same machine where the AspNetCore Web Api is running, I do not get an error. And the number is registered.
This is by accessing the Api on the same machine through chrome with the URL of http://localhost
With Https, I first get an `NET::ERR_CERT_COMMON_NAME_INVALID`, but after I clicked `Proceed to localhost (unsafe)`, the number is registered.
This is by accessing the Api on the same machine through chrome with the URL of https://localhost
2) When the `NoContent` Api is accessed with `localhost` and either http or https under the same machine where the AspNetCore Web Api is running, I do not get an error. And the number is registered.
This is by accessing the Api on the same machine through chrome with the URL of http://localhost
With Https, I first get an `NET::ERR_CERT_COMMON_NAME_INVALID`, but after I clicked `Proceed to localhost (unsafe)`, the number is registered.
This is by accessing the Api on the same machine through chrome with the URL of https://localhost
3) When the Api with content is accessed with domain name and https under the same machine where the AspNetCore Web Api is running, I am able to load the content successfully.
This is by accessing the Api on the same machine through chrome with the URL of https://example.com
3) When the Api with content is accessed with domain name and https under the same machine where the AspNetCore Web Api is running, I am able to load the content successfully.
This is by accessing the Api on the same machine through chrome with the URL of https://example.com
4) When the `NoContent` Api is accessed with domain name and https under different machine, I do not get an error. And the number is registered.
This is by accessing the Api on a different machine through chrome with the URL of https://example.com
This works either through internet, or on a different machine that connects with the server through PPTP VPN.
4) When the `NoContent` Api is accessed with domain name and https under different machine, I do not get an error. And the number is registered.
This is by accessing the Api on a different machine through chrome with the URL of https://example.com
This works either through internet, or on a different machine that connects with the server through PPTP VPN.
37 Replies
Up
Up2y ago
well you should not be using GET for mutating data, anyway. ..and then you'd just respond with 200 (ok) / 201 (created), not 204.
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
I mean is this a common issue with https and no content on the same machine? Or is it a possible configuration issue that action can be taken to resolve it but not evading it?
Up
Up2y ago
no. the https issue is that you're using an SSL cert and the machine doesn't trust it. either switch to serving http for localhost, or make the browser trust the cert you're using
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
So if you look at my case 1 and 2 is kind of different case one does not even have an option to trust but case 2 does
Up
Up2y ago
case 1 likely has this proceed button, too, if you expand the details. chrome likes to hide that option because well, it is a security risk.
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
no case 2 has it but it is hided also so I am aware of the option to show it
Up
Up2y ago
are you sending HSTS headers or anything?
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
I believe not
Up
Up2y ago
(it should tell you about that in the details screen where the proceed button would normally be)
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
let me provide a screenshot instead
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
This is the error of case 1
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
this is what I mean by case 2
Up
Up2y ago
$ curl --http2 --head https://ichigo.icu/verify/12345/Nih3J9WShu83Hgb76Hj
curl: (56) Failure when receiving data from the peer

$ curl --http2 --head http://ichigo.icu/verify/12345/Nih3J9WShu83Hgb76Hj
curl: (52) Empty reply from server
$ curl --http2 --head https://ichigo.icu/verify/12345/Nih3J9WShu83Hgb76Hj
curl: (56) Failure when receiving data from the peer

$ curl --http2 --head http://ichigo.icu/verify/12345/Nih3J9WShu83Hgb76Hj
curl: (52) Empty reply from server
looks like you're running on http, not https
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
The reason of you getting this is because there is bodymiddleware That filters ip Oh wait But your http work But it work on my machine
Up
Up2y ago
other than that, press F12, see if the dev console spits out any useful info
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
so on my machine this is powershell
Up
Up2y ago
add --head --http2
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
no problem
Up
Up2y ago
so.. working as intended
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
but this is case 4 where I accessed it through internet
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
case 1 still has issue
Up
Up2y ago
soo.. you're saying there's middleware blocking requests? are you 100% certain it is not blocking you here?
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
yeah
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
so the top is from host machine case 1 the bottom is through internet case 4 the reason I am 100% is not blocking is case 3 where content is loaded
Up
Up2y ago
that is a different status code than 204 tho..
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
the top first command with verify is case 1 the top second command with battlecfg is case 3 the bottom with verify is case 4
Up
Up2y ago
https://stackoverflow.com/questions/58215104/whats-the-neterr-http2-protocol-error-about suggests it may be your web server dropping the connection preemptively under certain circumstances still.. do me that favor and just switch to not using GET for mutating data. that will possibly fix this issue, and if not, will at least prevent you some future headaches
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
Yeah both work of using localhost with nocontent or not using it at all I was also suggested to have a frontend to handle https I was just curious is this by design that you cannot access no content httpget api with https and domain name from host machine
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
because http does work on host machine with no content
KKSK@🌸🎵🌸🎵🌸
KKSK@🌸🎵🌸🎵🌸2y ago
Want results from more Discord servers?
Add your server
More Posts
Deserialization ErrorSo I make a call to my API and this is what i get in return : ```json [ { "menuId":1, Not sure how the byte[] works in CsharpHi, basically I have a very simple program which I'm using to try and understand how bytes work: ```CS0229 false positive?Why is there an ambiguity here if there's only one member with that name?account systemIs someone make a system account on a wpf appMVC EF 5 - How to reference Model FK Properties?Hello, I'm having some trouble figuring out the logic to reference FK table properties from a model.Embedded Statement cannot be a declarationHi, I'm new to C# and struggling with this error. I think that the Variable cant be used because itssteam workshop game updateHello, i was wondering how could u can get a Workshop update just like this one and push it into a nCombine two Expression Func [Answered]I have two `Expression<Func<A,A>>`. I want to combine them into a single `Expression<Func<A,A>>` thaEmitting classes with TypeBuilder [Answered]The idea is to have certain primitive properties bound to a type through an attribute. The user of tWhat is the commandline to install the dotnet 7 sdk on Ubuntu?`sudo apt-get install -y dotnet7` is not it...