https://community.appian.com/support/w/kb/237/kb-1011-401-error-thrown-when-attempting-to-access-appian-after-configuring-a-web-serveren-USTelligent Community 12https://community.appian.com/support/w/kb/237/kb-1011-401-error-thrown-when-attempting-to-access-appian-after-configuring-a-web-serverThu, 06 Jan 2022 22:27:36 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:c5aa63af-88be-4120-9c4f-3645fcd22d2eElly Menghttps://community.appian.com/support/w/kb/237/kb-1011-401-error-thrown-when-attempting-to-access-appian-after-configuring-a-web-server#commentsCurrent Revision posted to Appian Knowledge Base by Elly Meng on 1/6/2022 10:27:36 PM<br /> <h2 class="name">Symptoms</h2> <p>When attempting to access Appian with a web server configured, users receive a 401 error like the one below:</p> <p><img alt=" " border="0" height="226" src="/cfs-file/__key/communityserver-wikis-components-files/00-00-00-00-11/401URL.jpg" width="372" /></p> <p>The following error is seen in the application server log:</p> <pre><span>ERROR com.appiancorp.security.cors.CorsFilter - CORS request rejected; invalid request from &lt;SOURCE_IP_ADDRESS&gt; to &lt;URL&gt;<br />javax.servlet.ServletException: CORS origin denied: &lt;URL&gt; is not on the allowed list:[] or the request path does not match the allowed paths.</span></pre> <p>Additionally, users who can login may be unable to load or open objects in <code>/design</code>.</p> <h2 id="cause">Cause</h2> <p>There is a misconfiguration in&nbsp;<strong>custom.properties</strong>&nbsp;related to the site URL.</p> <h2 id="action">Action</h2> <ul> <li>Ensure the&nbsp;<span><code>conf.suite.SCHEME</code> property in&nbsp;<strong>custom.properties</strong>&nbsp;matches the appropriate&nbsp;scheme users are using to access the site. I.e., HTTPS if SSL is configured on the web server and HTTP if it is not.</span></li> <li>Ensure the&nbsp;<span><code>conf.suite.SERVER_AND_PORT</code> property in <strong>custom.properties&nbsp;</strong>matches the computer&rsquo;s hostname and includes a port <strong>only&nbsp;</strong>if the default port is not being used, which is 80 for HTTP and 443 for HTTPS. These default ports are assumed based on the value</span>&nbsp;of&nbsp;<code>conf.suite.SCHEME</code>.</li> </ul> <h2 id="action">Affected Versions</h2> <p>This article applies to all self-managed versions of Appian using a web server.</p> <p>Last Reviewed: January 2022</p><div style="clear:both;"></div> <div style="font-size: 90%;">Tags: web browser, administration, third-party, web server</div> https://community.appian.com/support/w/kb/237/kb-1011-401-error-thrown-when-attempting-to-access-appian-after-configuring-a-web-server/revision/1Thu, 09 Feb 2017 22:58:12 GMTd3a83456-d57b-489c-a84c-4e8267bb592a:c5aa63af-88be-4120-9c4f-3645fcd22d2eNick Vigilantehttps://community.appian.com/support/w/kb/237/kb-1011-401-error-thrown-when-attempting-to-access-appian-after-configuring-a-web-server#commentsRevision 1 posted to Appian Knowledge Base by Nick Vigilante on 2/9/2017 10:58:12 PM<br /> <div class="row content_container"> <h2 id="symptoms">Symptoms</h2> <p>When attempting to access Appian, users may sometimes find their site or parts of their site not working due to rejected Cross Origin Resource Sharing (CORS) requests. When using Apache web server configured with SSL and JBoss, users may be shown a 401 error page whenever attempting to log in to their Appian site on Chrome. In some scenarios, popups may not show when attempting to open objects in the Designer interface (<em>/designer</em>). CORS requests can also be rejected if the SAML authentication is enabled but IdP is not added to the Appian CORS origin list.</p> <p>Relevant errors found in the application server log following the main error are given below:</p> <pre>INFO [stdout] (ajp-/0.0.0.0:8009-1) javax.servlet.ServletException: CORS origin denied mycomputer.mydomain.com not on allowed list:[] INFO [stdout] (ajp-/0.0.0.0:8009-1) at com.appiancorp.security.cors.CorsFilter.handleNormalRequest(CorsFilter.java:258) INFO [stdout] (ajp-/0.0.0.0:8009-1) at com.appiancorp.security.cors.CorsFilter.doFilter(CorsFilter.java:249) </pre> <h2 id="cause">Cause</h2> <p>Each web browser has its own implementation and security layer. At some point in the normal operation of the browser at which the context/domain changes, Chrome will detect the change as a security issue and will fail to display content. Other browsers do not have constraints as strict as this although any CORS enabled browser is capable of throwing this error given the appropriate conditions.</p> <p>For more information about CORS, refer to <a href="http://docs.telerik.com/kendo-ui/framework/datasource/cors">Telerik&#39;s article on CORS</a>.</p> <h2 id="action">Action</h2> <p>CORS request rejections most commonly occur due to improper configuration of the <strong>custom.properties</strong> file and CORS origins.</p> <ul> <li>Check the <strong>custom.properties</strong> file and make sure the <code>conf.suite.SCHEME</code> line matches the appropriate scheme (HTTP if not using SSL/HTTPS if using SSL) and the <code>conf.suite.SERVER_AND_PORT</code> line matches the computer&rsquo;s hostname and includes a port if not using port 80 for HTTP or port 443 for HTTPS. <br /><strong>Note:</strong> Do not add port 80 or port 443 to <code>conf.suite.SERVER_AND_PORT</code> as the port number is assumed to be either 80 or 443 based on the value of <code>conf.suite.SCHEME</code>.</li> <li>Make sure all relevant origins are added to the Appian CORS origin list and any web server used must be configured to handle CORS requests.</li> </ul> <h2 id="affected-versions">Affected Versions</h2> <p>This article applies to all versions of Appian.</p> </div> <p>Last Reviewed: February 2017</p><div style="clear:both;"></div> <div style="font-size: 90%;">Tags: web browser, embedded interfaces, administration, third-party</div>