IBM Support

Admin console errors with "Request failed with status code 403"

Troubleshooting


Problem

WSL is protected in front by an extra (Apache) proxy to check the users GEO location (for example to prevent access from outside a specific country). The incoming traffic is subsequently forwarded to the HAProxy which on its turn forwards the traffic to the WSL virtual IP. Doing this the following error is shown when accessing the Admin Console:

Request failed with status code 403

The proxy shows these errors:
{success: false, error: "Forbidden, based on origin of request"}
error: "Forbidden, based on origin of request"
success: false

So basically this is the scenario: USER --> APACHE PROXY --> HAPROXY --> WSL


Resolving The Problem

WSL only allows the front proxy to connect to it, and by adding a second proxy the HEADER REFERER prevents some connections.

To solve this issue the network admin needs to add a line to the HAProxy on the backend definition to rewrite the header:

http-request set-header Referer <URL of <HAPROXY>


Document Location

Worldwide


[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSHGWL","label":"IBM Watson Studio Local"},"Component":"","Platform":[{"code":"PF016","label":"Linux"}],"Version":"All Versions","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}]

Document Information

More support for:
IBM Watson Studio Local

Software version:
All Versions

Operating system(s):
Linux

Document number:
888521

Modified date:
30 December 2019

UID

ibm10888521