Solved Vivaldi forms log in: Error 403 - Forbidden
-
Hi @Pathduck,
Sorry if I take so much time between my posts.
Because most of the time I'm on this office laptop, in read-only.I see no redirects in the Network logs.
It's directly (through proxy) 403 error.It's only blocking Vivaldi Forum, I have no problem with any other website that I use, including the Discourse based community.metabrainz.org, for instance (for which I do see same remote address 127.0.0.1:9000 and same
strict-origin-when-cross-origin
in the request headers.
Maybe I should compare response headers, instead?The proxy settings and exceptions are based on a company PAC file, I think I cannot do much.
The other forums that all work OK (like the one cited before), have no special settings or exceptions in that PAC file.
-
@jesus2099 Hi - I can't really help more with this. It's something you'll need to take up with your IT people controlling the proxy.
Only thing I can say is there is absolutely no difference in how Vivaldi connects to the internet compared to other browsers.
-
Oh but I do use Vivaldi browser for all the internet.
It's a problem between forum.vivaldi.net and my proxy setup (that I cannot change), not with Vivaldi browser.
All other forums work well in the same Vivaldi browser, that I use continuously.
But forum.vivaldi.net does not work with any browsers on my office proxy setup.
I wondered, maybe something could be done to fix that, as other website login systems are working OK.
But if I am the only one having this, it will be difficult to debug.
-
@jesus2099 Might be as simple as the proxy has some kind of security check that looks at the URL and somehow detects something it thinks is "bad" and blocks the request.
There's a lot of data there a badly written proxy could in theory react to:
https://login.vivaldi.net/authenticationendpoint/login.do?client_id=TOrKO97sJOni1AfNXpjf2WnkAG8a&commonAuthCallerPath=%2Foauth2%2Fauthorize&forceAuth=false&passiveAuth=false&redirect_uri=https%3A%2F%2Fforum.vivaldi.net%2Fauth%2Fvivaldi%2Fcallback&response_type=code&scope=openid&state=ut7AUCwo-kl3gugvhcICvMxU-QE-UBp-746g&tenantDomain=carbon.super&sessionDataKey=14792ce0-aa47-438c-8188-21a3b93f2cd5&relyingParty=TOrKO97sJOni1AfNXpjf2WnkAG8a&type=oidc&sp=forum.vivaldi.net&isSaaSApp=false&authenticators=BasicAuthenticator%3ALOCAL
-
I have re-installed the great Proxy SwitchyOmega extension and added a rule so that the login.vivaldi.net goes to [Direct] (no proxies), and it works!
-
@jesus2099 Well if installing an extension allows a user to bypass system proxy settings, the IT people at your work needs to have a good look at their security policies
What's the point of even having a proxy if the user can simply bypass it with an extension...
-
This proxy is probably coming with nice-to-have features and is not mandatory.
In fact in other browsers we can change proxy settings, but not in Vivaldi.But the bonus of this extension is to have a proxy setting per website.
I think I recall that opera 12 did have a proxy setting per site.
It had so many settings per site! -
@jesus2099 said in Vivaldi forms log in: Error 403 - Forbidden:
nice-to-have features
Like blocking web sites for no good reason and probably reporting on user traffic to management...
In fact in other browsers we can change proxy settings, but not in Vivaldi.
AFAIK all Chromium-based browsers have no direct proxy settings, unless specified by command line or GPO.
In Firefox yes, old Opera of course and probably some older legacy browsers. But Chromium-based use system proxy settings and hard for users to override unless using an extension (and allowed by IT).
-
-
-
@jesus2099
nice-to-have features@Pathduck
Like blocking web sites for no good reason and probably reporting on user traffic to management...Oh my god, I wouldn't have thought of it.
I can now access my personal emails back, again!Maybe I should just select [Direct] for everything, instead of a selection of sites.
-
@jesus2099 said in Vivaldi forms log in: Error 403 - Forbidden:
Maybe I should just select [Direct] for everything, instead of a selection of sites.
Absolutely
The IT people can go suck an egg if they think installing badly configured proxy solutions is any way to deal with security...
I have a high-security laptop used for work. It simply cannot access the internet at all before connecting through a VPN that strictly controls what sites we can access. I can also only use Edge and IE - no software allowed except approved ones. But it's understandable given the security requirements for remote work these days. If there's a site I for some reason can't access I have to file a request through the system, get approved by my boss and security team...
Trying in any way to bypass the system by circumventing security is basically a fireable offense.
So count yourself lucky you were able to solve it so easily for your work machine
-
This post is deleted! -