KB-1978 Record icons fail to render after applying a hotfix

Parmida Borhani — Fri, 23 Aug 2019 00:37:03 GMT

Current Revision posted to Appian Knowledge Base by Parmida Borhani on 8/23/2019 12:37:03 AM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml file: <sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server: <sec:http-firewall ref="httpFirewall"/>

Affected Versions

This article applies to Appian 18.1 Hotfix O, 18.2 Hotfix M, 18.3 Hotfix J or later.

Last Reviewed: August 2019

Tags: records, application server, infrastructure, hotfix

KB-1978 Record icons fail to render after applying a hotfix

Parmida Borhani — Fri, 23 Aug 2019 00:37:03 GMT

Revision 10 posted to Appian Knowledge Base by Parmida Borhani on 8/23/2019 12:37:03 AM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml file: <sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server: <sec:http-firewall ref="httpFirewall"/>

Affected Versions

This article applies to Appian 18.1 Hotfix O, 18.2 Hotfix M, 18.3 Hotfix J or later.

Last Reviewed: August 2019

Tags: records, application server, infrastructure, hotfix

DRAFT KB-XXXX Record icons fails to render after applying a hotfix

Parmida Borhani — Fri, 23 Aug 2019 00:36:06 GMT

Revision 9 posted to Appian Knowledge Base by Parmida Borhani on 8/23/2019 12:36:06 AM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml file: <sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server: <sec:http-firewall ref="httpFirewall"/>

Affected Versions

This article applies to Appian 18.1 Hotfix O, 18.2 Hotfix M, 18.3 Hotfix J or later.

Last Reviewed: August 2019

Tags: records, application server, infrastructure, hotfix

DRAFT KB-XXXX Record icons fails to render after applying a hotfix

Tejas Kargutkar — Thu, 22 Aug 2019 13:38:52 GMT

Revision 8 posted to Appian Knowledge Base by Tejas Kargutkar on 8/22/2019 1:38:52 PM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml file:

<sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server:

<sec:http-firewall ref="httpFirewall"/>

Affected Versions

This article applies to Appian 18.1 Hotfix O, 18.2 Hotfix M, 18.3 Hotfix J or later.

Last Reviewed: August 2019

Tags: records, application server, infrastructure, hotfix

DRAFT KB-XXXX Record icons fails to render after applying a hotfix

Parmida Borhani — Thu, 22 Aug 2019 07:05:34 GMT

Revision 7 posted to Appian Knowledge Base by Parmida Borhani on 8/22/2019 7:05:34 AM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml present in <APPIAN_HOME>\ear\suite.ear\web.war\WEB-INF\conf\security:

<sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server:

<sec:http-firewall ref="httpFirewall"/>

Affected Versions

This article applies to Appian 18.1 Hotfix O, 18.2 Hotfix M, 18.3 Hotfix J or later.

Last Reviewed: August 2019

Tags: records, application server, infrastructure, hotfix

DRAFT KB-XXXX Record icons fails to render after applying a hotfix

Tejas Kargutkar — Mon, 19 Aug 2019 13:16:13 GMT

Revision 6 posted to Appian Knowledge Base by Tejas Kargutkar on 8/19/2019 1:16:13 PM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml present in <APPIAN_HOME>\ear\suite.ear\web.war\WEB-INF\conf\security

<sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server:

<sec:http-firewall ref="httpFirewall"/>

Affected Versions

Appian 18.1 Hotfix O or later

Appian 18.2 Hotfix M or later

Appian 18.3 Hotfix J or later

Last Reviewed: August 2019

Tags: records, application server, infrastructure, hotfix

DRAFT KB-XXXX Record icons fails to render after applying a hotfix

Tejas Kargutkar — Mon, 19 Aug 2019 13:15:47 GMT

Revision 5 posted to Appian Knowledge Base by Tejas Kargutkar on 8/19/2019 1:15:47 PM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml present in <APPIAN_HOME>\ear\suite.ear\web.war\WEB-INF\conf\security

<sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server:

<sec:http-firewall ref="httpFirewall"/>

Affected Versions

Appian 18.1 Hotfix O or later

Appian 18.2 Hotfix M or later

Appian 18.3 Hotfix J or later

Last Reviewed: June 2019

Tags: records, application server, infrastructure, hotfix

DRAFT KB-XXXX Record icons fails to render after applying a hotfix

Tejas Kargutkar — Thu, 15 Aug 2019 14:51:45 GMT

Revision 4 posted to Appian Knowledge Base by Tejas Kargutkar on 8/15/2019 2:51:45 PM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml present in <APPIAN_HOME>\ear\suite.ear\web.war\WEB-INF\conf\security

<sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server:

<sec:http-firewall ref="httpFirewall"/>

Affected Versions

18.1 Hotfix O or later.

18.2 Hotfix M or later.

18.3 Hotfix J or later.

Last Reviewed: June 2019

Tags: records, application server, infrastructure, hotfix

DRAFT KB-XXXX Record icons fails to render after applying a hotfix

Tejas Kargutkar — Mon, 29 Jul 2019 13:08:15 GMT

Revision 3 posted to Appian Knowledge Base by Tejas Kargutkar on 7/29/2019 1:08:15 PM

Symptoms

Record icons fails to render after applying a hotfix released in May 2019 or later.

The following error is observed in the application server log:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the hotfix.

The hotfix released in May 2019 has the following line added to the spring-security-01-common.xml present in <APPIAN_HOME>\ear\suite.ear\web.war\WEB-INF\conf\security

<sec:http-firewall ref="httpFirewall"/>

Action

Add the following line to the spring-security-01-common-override.xml file and restart the application server:

<sec:http-firewall ref="httpFirewall"/>

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: June 2019

Tags: records, application server, infrastructure, hotfix

DRAFT KB-XXXX Record icon fails to render after applying a Hotfix

Tejas Kargutkar — Fri, 26 Jul 2019 19:46:37 GMT

Revision 2 posted to Appian Knowledge Base by Tejas Kargutkar on 7/26/2019 7:46:37 PM

Symptoms

Record icon fails to render after applying Appian Hotfix released in May 2019 or later. For example record icon will look like the following:

Following error will be observed in the application server log at the same time:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the Hotfix.

Appian Hotfix released in May 2019 has the following line added to the spring-security-01-common.xml present in <AE_HOME>\ear\suite.ear\web.war\WEB-INF\conf\security

<sec:http-firewall ref="httpFirewall"/>

This error will occur if the above line is not added to your existing spring-security-01-common-override.xml file.

Action

Add the following line to your spring-security-01-common-override.xml and restart the application server:

<sec:http-firewall ref="httpFirewall"/>

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: June 2019

Tags: application server, infrastructure, hotfix

DRAFT KB-XXXX Record icon fails to render after applying a Hotfix

Tejas Kargutkar — Fri, 28 Jun 2019 19:11:52 GMT

Revision 1 posted to Appian Knowledge Base by Tejas Kargutkar on 6/28/2019 7:11:52 PM

Symptoms

Record icon fails to render after applying Appian Hotfix released in May 2019 or later. For example record icon will look like the following:

Following error will be observed in the application server log at the same time:

<Error> <HTTP> <BEA-101020> <[ServletContext@1165446757[app:suite module:suite path:null spec-version:3.1]] Servlet failed with an Exception
org.springframework.security.web.firewall.RequestRejectedException: The request was rejected because the URL contained a potentially malicious String ";"
 at org.springframework.security.web.firewall.StrictHttpFirewall.rejectedBlacklistedUrls(StrictHttpFirewall.java:265)
 at org.springframework.security.web.firewall.StrictHttpFirewall.getFirewalledRequest(StrictHttpFirewall.java:245)
 at org.springframework.security.web.FilterChainProxy.doFilterInternal(FilterChainProxy.java:193)
 at org.springframework.security.web.FilterChainProxy.doFilter(FilterChainProxy.java:177)
 at org.springframework.web.filter.DelegatingFilterProxy.invokeDelegate(DelegatingFilterProxy.java:347)

Cause

This error will occur if the environment is configured to use spring security and the override files are not merged with the changes introduced in the Hotfix.

Hotfix released in May 2019 has the following line added to the spring-security-01-common.xml present in <AE_HOME>\ear\suite.ear\web.war\WEB-INF\conf\security

<sec:http-firewall ref="httpFirewall"/>

This error will occur if the above line is not added to your existing override 01 file.

Action

Add the following line to your spring-security-01-common-override.xml and restart the application server:

<sec:http-firewall ref="httpFirewall"/>

Affected Versions

This article applies to all versions of Appian.

Last Reviewed: June 2019

Tags: Security, hotfix