[Freedombox-discuss] UPDATE: NOT SOLVED, there appears to be a timeout issue. Was: Forbidden (403)

Sunil Mohan Adapa sunil at medhas.org
Wed Dec 22 21:10:21 GMT 2021

On 12/22/21 12:16, A. F. Cano wrote:
> On Fri, Dec 17, 2021 at 04:06:11PM -0500, A. F. Cano wrote:
>> I upraded the internal machine from Debian 10 to 11 and the problem
>> disappeared.  Not sure what specific prolem got resolved.
> Well, the problem has not gone away.  It happens sporadically, usually
> after a long time has passed after the last search.  Then I get the
> forbidden message.  Then I have to explicitly go to the searx page and
> re-type the search.  If I serach soon after, after an existing search or
> from the search bar in firefox, no problem.  Is there some timeout in
> searx that gives the forbidden message after a specific period of time?
> Like I said in my original message, the browser is sending the refered
> info.

This could be the Searx logged in session timing out. When we access 
Searx for the first time, a single-sign-on token is issued through a 
redirect to Freedombox's login page (and a redirect back). After a 
while, the token expires and needs to be renewed. At this time, if the 
request is HTTP GET request, the request is redirected automatically and 
back without the user noticing this. However, if this is a POST request, 
the approach does not work and the above problem can be seen. We didn't 
find a problem solution to this problem yet and when found we can 
implement it.

Potential word arounds include not requiring authentication for Searx or 
adjusting the values of the session to much longer.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_0x36C361440C9BC971.asc
Type: application/pgp-keys
Size: 19152 bytes
Desc: OpenPGP public key
URL: <http://alioth-lists.debian.net/pipermail/freedombox-discuss/attachments/20211222/255ff846/attachment-0001.key>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://alioth-lists.debian.net/pipermail/freedombox-discuss/attachments/20211222/255ff846/attachment-0001.sig>

More information about the Freedombox-discuss mailing list