background

At around three or four o'clock in the afternoon of 2021/08/30 , the test students in the group found that there was a problem with the main process of the Bosch project in Penglai environment (grayscale environment). No." does not jump to the specified page, but jumps to the inquiry home page

Analysis process

First, configure the local domain name resolution configuration of the Penglai environment, so that the local access to the domain name of the Kunlun environment (formal environment) is the Penglai environment

  • Open powerShell with administrator privileges, go to hosts directory cd C:\Windows\System32\Drivers\etc
  • Enter notepad hosts , open hosts, add 124.71.23.127 os3.rbtssws.com.cn

Then, I visited the Bosch project in Penglai Environment, reproduced the problem and found that a redirection occurred when I clicked on "Inquiry for stocking" or "Order No."

image-20210830203716850.png

The redirected link is to request authorization, so why does such a redirect occur? The jump page should not have expired at once, session , and then request headers the cookies field in 06216614cf3c41 and found that session was not carried, while the Kunlun environment carried session

image-20210830204037643.png

image-20210830204047694.png

Could it be that there is no storage in the browser cookie ? However, the investigation is not the problem, so is it because the redirected domain name is inconsistent with cookie in domain ?

Click on the link to jump to "Inquiry for stocking":

企业微信截图_16303141699364.png

Click the link to jump to the "Single Number":

企业微信截图_16303143439757.png

I did find that there is a problem with the redirected domain name. There is an extra number 2, which is very speechless! ! !

企业微信截图_163031515211(1).png

After further investigation, it is found that the domain name of the page jump path is the read configuration, which is injected when the project is deployed.

企业微信截图_16303157848846.png

Summarize

The online problem is because there is a problem with the domain name of the redirected path, so that the redirection request does not carry cookie , and the gateway intercepts it and redirects to request authorization, and the domain name requested for authorization is correct and carries cookie , and the gateway judges that it is passed. Jump to the home page by default


记得要微笑
1.9k 声望4.5k 粉丝

知不足而奋进,望远山而前行,卯足劲,不减热爱。


引用和评论

0 条评论