BrowZer & Home Assistant - Strange responses after login to the Overlay Network

BrowZer
1

I am using an CloudZiti Setup with BrowZer (with Auth0 as external JWT signer) enabled. Via the Ziti Overlay Network I want to access my Home Assistant Instance (on Raspberry Pi 4) with the Open Ziti Addon (v1.5.3) installed.

Everything works great without BrowZer Access (using JWT enrolled identities). When I try to access Home Assistant via BrowZer I can login with my Google-Mail address. The login seems to be successfully and I get fowarded to the next page. But this page only contains what appears to be encoded or binary data, wrapped in html tags:

image
image1603×838 140 KB

The Chrome developer tools console has no entries for this webpage.

In the OpenZiti Home Assistant Addon logs the connection looks like this:

[WAIT:MAIN LOOP]
[13:04:00] INFO: ZITI-EDGE-TUNNEL: [15/Thu Feb 22 13:04:00 CET 2024] [PID:186] [WAIT:MAIN LOOP]
(186)[     4557.122]    WARN ziti-sdk:connect.c:1325 process_edge_message() conn[0.82/-/Connected] unexpected msg_seq[-951456980] previous[0]
(186)[     4557.127]    WARN ziti-sdk:connect.c:1325 process_edge_message() conn[0.82/-/Connected] unexpected msg_seq[-414741627] previous[-951456980]
(186)[     4592.761]    WARN ziti-sdk:connect.c:1325 process_edge_message() conn[0.83/-/Connected] unexpected msg_seq[-1404816029] previous[0]
(186)[     4592.772]    WARN ziti-sdk:connect.c:1325 process_edge_message() conn[0.83/-/Connected] unexpected msg_seq[307215757] previous[-1404816029]

BrowZer Service in CloudZiti is setup like this:

image
image757×898 46.5 KB

Where 192.168.128.23:8123 is the IP:PORT of the Home Assistant instance on the local network.

Does anybody have experience with browzer in conjunction with home assistant?

3 Likes
2

Hi @MrRatherford, that's ... strange indeed. It kinda looks like some kind of end to end encryption-related issue to me. You're saying you can access the server fine using a tunneler, right? Only when you add browzer to the mix did this happen? Do I understand you correctly?

@curt -- does this look like an e2ee type of issue or does it seem like something else/unknown?

3 Likes
3

Hi @TheLumberjack : Correct, I access the Home Assistant without problems over identities enrolled in the client applications on android, windows and mac.

When I use OIDC authentication with browZer I only get the repsonse above.

3 Likes
4

@MrRatherford I see you are running browZer 0.52.2, our latest, which is good. Based on the above chatter, it is unclear to me what the issue is. What you see is a unique manifestation in my experience. If you are willing, perhaps we can provision an Identity for me on your network, and I can try to diagnose from here. If so, DM me, and we can continue the conversation there.

3 Likes
5

Since the web server is Raspberry Pi 4, it is possible that it is doing something different than the various other web servers known to work with browZer. e.g. maybe it is using some form of content encoding that the ZBR doesn't understand/support (e.g. not gzip which we support, but maybe the Pi is sending br). I'll need more information to diagnose.

3 Likes
6

Hi @curt unfortunately there also seems to be a problem with v1.5.4. of the openziti addon for home assistant. The addon is unable to start after the update from v1.5.3. I will sort this problem out over on the github page of the project (v1.5.4 Addon does not start · Issue #8 · NicFragale/HA-NetFoundry · GitHub) and come back to you with a private message as soon as I am able to access the system via enrolled identities in the client applications again.

3 Likes
7

@MrRatherford can you please get into dev tools, go to the Console tab, hit your web app over browZer again, and once the web page renders the gobbledygook, export the Console log, and send it to me?

3 Likes
8

Hi @curt ,

please excuse the late reply! In the meantime the issue for the home assistant openziti addon has been fixed and I am running version 1.5.5 of the addon now. Unfortunately the problem with the garbled up text still persists.

I sent you a PM with the information concerning your setup identity in my CloudZiti environment.
Below you also find the chrome console log you asked for.

Hope this helps! If you need anything else please let me know!

Navigated to https://test.csc2024.browzer.cloudziti.io/
ziti-browzer-runtime-6c085827.js:215008 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-6c085827.js:215012 ZBR Logging Begins...
ziti-browzer-runtime-6c085827.js:217253 Fetch finished loading: GET "https://dev-pn2w8hqnw5wej8ai.eu.auth0.com/.well-known/openid-configuration".
zitiFetch @ ziti-browzer-runtime-6c085827.js:217253
discoveryRequest @ ziti-browzer-runtime-6c085827.js:213633
discoverAuthServer @ ziti-browzer-runtime-6c085827.js:214706
validateAndGetOIDCForPKCE @ ziti-browzer-runtime-6c085827.js:214785
pkceLogout @ ziti-browzer-runtime-6c085827.js:214923
initialize @ ziti-browzer-runtime-6c085827.js:216447
await in initialize (async)
(anonymous) @ ziti-browzer-runtime-6c085827.js:216736
(anonymous) @ ziti-browzer-runtime-6c085827.js:217219
(anonymous) @ ziti-browzer-runtime-6c085827.js:217298
Navigated to https://test.csc2024.browzer.cloudziti.io/
ziti-browzer-runtime-6c085827.js:215008 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-6c085827.js:215012 ZBR Logging Begins...
Navigated to https://dev-pn2w8hqnw5wej8ai.eu.auth0.com/u/login?state=hKFo2SBvLVdVQVh0V0pENGtTZWMzbUVTR1dhamFFMjhSM05aUqFur3VuaXZlcnNhbC1sb2dpbqN0aWTZIEFHWVAyMkExUWxLazNhV2ZsV3ZMZ21OeS1wbjJmVzhZo2NpZNkgM1diN1hYYkU2Q1RXcmVYZ0JTMEFDU0dYVndBc2cyRmI
/favicon.ico:1 
        
        
       GET https://dev-pn2w8hqnw5wej8ai.eu.auth0.com/favicon.ico 404 (Not Found)
Navigated to https://test.csc2024.browzer.cloudziti.io/?code=Nce3MZWzTZKM3Cjoo3WyOK7X_uAeekXdbPNqeKqXoF4ud&state=42nsTh916M-dG6CATcQvD0MXWDHizHOWuJ5IyhHpD9w
ziti-browzer-runtime-6c085827.js:215008 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-6c085827.js:215012 ZBR Logging Begins...
ziti-browzer-runtime-6c085827.js:217253 Fetch finished loading: POST "https://dev-pn2w8hqnw5wej8ai.eu.auth0.com/oauth/token".
zitiFetch @ ziti-browzer-runtime-6c085827.js:217253
authenticatedRequest @ ziti-browzer-runtime-6c085827.js:214105
await in authenticatedRequest (async)
tokenEndpointRequest @ ziti-browzer-runtime-6c085827.js:214133
authorizationCodeGrantRequest @ ziti-browzer-runtime-6c085827.js:214317
pkceCallback @ ziti-browzer-runtime-6c085827.js:214884
await in pkceCallback (async)
initialize @ ziti-browzer-runtime-6c085827.js:216419
await in initialize (async)
(anonymous) @ ziti-browzer-runtime-6c085827.js:216736
(anonymous) @ ziti-browzer-runtime-6c085827.js:217219
(anonymous) @ ziti-browzer-runtime-6c085827.js:217298
Navigated to https://test.csc2024.browzer.cloudziti.io/
ziti-browzer-runtime-6c085827.js:215008 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-6c085827.js:215012 ZBR Logging Begins...
ziti-browzer-runtime-6c085827.js:163482 Fetch finished loading: GET "https://425e8315-9015-4d57-aaba-4f2bb9874f67-p.production.netfoundry.io/edge/client/v1/version".
request @ ziti-browzer-runtime-6c085827.js:163482
listVersion @ ziti-browzer-runtime-6c085827.js:165935
listControllerVersion @ ziti-browzer-runtime-6c085827.js:167111
initialize @ ziti-browzer-runtime-6c085827.js:216537
await in initialize (async)
(anonymous) @ ziti-browzer-runtime-6c085827.js:216736
(anonymous) @ ziti-browzer-runtime-6c085827.js:217219
(anonymous) @ ziti-browzer-runtime-6c085827.js:217298
ziti-browzer-runtime-6c085827.js:163482 Fetch finished loading: POST "https://425e8315-9015-4d57-aaba-4f2bb9874f67-p.production.netfoundry.io/edge/client/v1/authenticate?method=ext-jwt".
request @ ziti-browzer-runtime-6c085827.js:163482
authenticate @ ziti-browzer-runtime-6c085827.js:163662
(anonymous) @ ziti-browzer-runtime-6c085827.js:166795
doAuthenticate @ ziti-browzer-runtime-6c085827.js:166786
getFreshAPISession @ ziti-browzer-runtime-6c085827.js:166841
(anonymous) @ ziti-browzer-runtime-6c085827.js:166912
(anonymous) @ ziti-browzer-runtime-6c085827.js:69189
fulfilled @ ziti-browzer-runtime-6c085827.js:69131
Promise.then (async)
step @ ziti-browzer-runtime-6c085827.js:69146
(anonymous) @ ziti-browzer-runtime-6c085827.js:69148
__awaiter$3 @ ziti-browzer-runtime-6c085827.js:69128
runExclusive @ ziti-browzer-runtime-6c085827.js:69180
ensureAPISession @ ziti-browzer-runtime-6c085827.js:166907
fetchServices @ ziti-browzer-runtime-6c085827.js:167078
(anonymous) @ ziti-browzer-runtime-6c085827.js:217217
await in (anonymous) (async)
(anonymous) @ ziti-browzer-runtime-6c085827.js:217219
(anonymous) @ ziti-browzer-runtime-6c085827.js:217298
ziti-browzer-runtime-6c085827.js:163482 Fetch finished loading: GET "https://425e8315-9015-4d57-aaba-4f2bb9874f67-p.production.netfoundry.io/edge/client/v1/services?limit=100".
request @ ziti-browzer-runtime-6c085827.js:163482
listServices @ ziti-browzer-runtime-6c085827.js:165317
fetchServices @ ziti-browzer-runtime-6c085827.js:167082
await in fetchServices (async)
(anonymous) @ ziti-browzer-runtime-6c085827.js:217217
await in (anonymous) (async)
(anonymous) @ ziti-browzer-runtime-6c085827.js:217219
(anonymous) @ ziti-browzer-runtime-6c085827.js:217298
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671 Fetch finished loading: GET "https://425e8315-9015-4d57-aaba-4f2bb9874f67-p.production.netfoundry.io/edge/client/v1/version".
request @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671
listVersion @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:118651
listControllerVersion @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119575
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121656
await in (anonymous) (async)
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121631
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:379
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:304
fulfilled @ ziti-browzer-sw-misc-c8698879.js:276
Promise.then (async)
step @ ziti-browzer-sw-misc-c8698879.js:278
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:279
__awaiter$2 @ ziti-browzer-sw-misc-c8698879.js:275
runExclusive @ ziti-browzer-sw-misc-c8698879.js:301
runExclusive @ ziti-browzer-sw-misc-c8698879.js:379
_initialize @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121630
_handle @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:122007
await in _handle (async)
_getResponse @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:545
await in _getResponse (async)
handleAll @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:536
handle @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:497
handleRequest @ ziti-browzer-sw--workbox-routing--76351553.js:290
(anonymous) @ ziti-browzer-sw--workbox-routing--76351553.js:198
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671 Fetch finished loading: POST "https://425e8315-9015-4d57-aaba-4f2bb9874f67-p.production.netfoundry.io/edge/client/v1/authenticate?method=ext-jwt".
request @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671
authenticate @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116830
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119317
doAuthenticate @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119311
getFreshAPISession @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119354
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119403
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64992
fulfilled @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64948
Promise.then (async)
step @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64950
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64951
__awaiter @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64947
runExclusive @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64982
ensureAPISession @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119401
enroll @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119419
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121674
setTimeout (async)
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121673
await in (anonymous) (async)
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121631
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:379
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:304
fulfilled @ ziti-browzer-sw-misc-c8698879.js:276
Promise.then (async)
step @ ziti-browzer-sw-misc-c8698879.js:278
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:279
__awaiter$2 @ ziti-browzer-sw-misc-c8698879.js:275
runExclusive @ ziti-browzer-sw-misc-c8698879.js:301
runExclusive @ ziti-browzer-sw-misc-c8698879.js:379
_initialize @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121630
_handle @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:122007
await in _handle (async)
_getResponse @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:545
await in _getResponse (async)
handleAll @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:536
handle @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:497
handleRequest @ ziti-browzer-sw--workbox-routing--76351553.js:290
(anonymous) @ ziti-browzer-sw--workbox-routing--76351553.js:198
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671 Fetch finished loading: POST "https://425e8315-9015-4d57-aaba-4f2bb9874f67-p.production.netfoundry.io/edge/client/v1/current-api-session/certificates".
request @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671
createCurrentApiSessionCertificate @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:117005
createEphemeralCert @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:61531
enroll @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:61513
await in enroll (async)
enroll @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119426
await in enroll (async)
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121674
setTimeout (async)
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121673
await in (anonymous) (async)
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121631
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:379
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:304
fulfilled @ ziti-browzer-sw-misc-c8698879.js:276
Promise.then (async)
step @ ziti-browzer-sw-misc-c8698879.js:278
(anonymous) @ ziti-browzer-sw-misc-c8698879.js:279
__awaiter$2 @ ziti-browzer-sw-misc-c8698879.js:275
runExclusive @ ziti-browzer-sw-misc-c8698879.js:301
runExclusive @ ziti-browzer-sw-misc-c8698879.js:379
_initialize @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:121630
_handle @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:122007
await in _handle (async)
_getResponse @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:545
await in _getResponse (async)
handleAll @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:536
handle @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:497
handleRequest @ ziti-browzer-sw--workbox-routing--76351553.js:290
(anonymous) @ ziti-browzer-sw--workbox-routing--76351553.js:198
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671 Fetch finished loading: GET "https://425e8315-9015-4d57-aaba-4f2bb9874f67-p.production.netfoundry.io/edge/client/v1/services?limit=100".
request @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671
listServices @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:118150
fetchServices @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119548
await in fetchServices (async)
getServiceConfigByName @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119623
getConfigHostByServiceName @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119657
_handle @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:122008
await in _handle (async)
_getResponse @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:545
await in _getResponse (async)
handleAll @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:536
handle @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:497
handleRequest @ ziti-browzer-sw--workbox-routing--76351553.js:290
(anonymous) @ ziti-browzer-sw--workbox-routing--76351553.js:198
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671 Fetch finished loading: POST "https://425e8315-9015-4d57-aaba-4f2bb9874f67-p.production.netfoundry.io/edge/client/v1/sessions".
request @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116671
createSession @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:118451
createNetworkSession @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119805
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119783
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64992
fulfilled @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64948
Promise.then (async)
step @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64950
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64951
__awaiter @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64947
runExclusive @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:64982
_getNetworkSessionByServiceId @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119780
monadic @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:30104
getNetworkSessionByServiceId @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119798
dial @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:119862
connect @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:66649
createConnection @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116093
newZitiAgent @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116347
connect @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:116313
(anonymous) @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:120420
await in (anonymous) (async)
httpFetch @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:120401
_getZitiNetworkPromise @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:122471
await in _getZitiNetworkPromise (async)
_handle @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:122031
await in _handle (async)
_getResponse @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:545
await in _getResponse (async)
handleAll @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:536
handle @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:497
handleRequest @ ziti-browzer-sw--workbox-routing--76351553.js:290
(anonymous) @ ziti-browzer-sw--workbox-routing--76351553.js:198
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:before SSL initialization
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS write client hello
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS write client hello
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS read server hello
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:TLSv1.3 read encrypted extensions
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS read server certificate request
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS read server certificate
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:TLSv1.3 read server certificate verify
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS read finished
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS write change cipher spec
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS write client certificate
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS write certificate verify
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS write finished
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSL negotiation finished successfully
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSL negotiation finished successfully
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:34903 SSL_connect:SSLv3/TLS read server session ticket
Navigated to https://test.csc2024.browzer.cloudziti.io/
ziti-browzer-sw-workbox-strategies-2bfa94f1.js:110 Fetch finished loading: GET "https://test.csc2024.browzer.cloudziti.io/favicon.ico".
fetch @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:110
_getNetworkPromise @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:122706
_handle @ ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--61299916.js:122021
await in _handle (async)
_getResponse @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:545
await in _getResponse (async)
handleAll @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:536
handle @ ziti-browzer-sw-workbox-strategies-2bfa94f1.js:497
handleRequest @ ziti-browzer-sw--workbox-routing--76351553.js:290
(anonymous) @ ziti-browzer-sw--workbox-routing--76351553.js:198
1 Like
9

@MrRatherford I think I see the problem. Your web server is sending HTTP Responses with Content-Encoding: deflate and it seems like the ZBR isn't handling that correctly (i.e. it's not doing the inflate, as I surmised previously). I'll work on adding that support now.

10

@MrRatherford I just released BrowZer 0.53.0, which contains new support to decode the deflate content-encoding.

Please give this version a try, and let me know if it resolves the issue you reported.

1 Like
11

@MrRatherford I just released BrowZer 0.54.1

We'd love to hear if recent releases resolve the issue you reported. Let us know.

1 Like
12

Hi @curt ,

where is BrowZer implemented? Do I have to update my Home Assistant OpenZiti Addon or is this a part of the CLoudZiti Environment I am using? At the moment there are no updates available for the Home Assistant Addon.

1 Like
13

If you are using CloudZiti, just log in to the nfconsole, then in the left-nav go to your browZer app:

image
image306×771 48 KB

then click on your browZer app, then click the UPDATE button:

image
image733×976 47.3 KB

This will update the version of browZer that is in use for your network. The update operation takes about 3 or 4 minutes.

a curl https://test.csc2024.browzer.cloudziti.io/healthcheck currently reveals that you are currently running version 0.52.2

After the above update is complete, this curl should render version 0.54.1 (which is our current latest)

2 Likes
14

Hi @curt ,

I successfully updated the cloudziti browzer deployment:

curl https://test.csc2024.browzer.cloudziti.io/healthcheck
{"version":"0.54.2","uptime":"0 days, 13 hours, 5 mins, 43 secs","date":"2024-03-08T09:23:31.541Z"}

And tested the access. It seems that your patch fixed the inflation/deflation problem! The home assistant login page is now accessible and rendered as it should via browzer.

Unfortunately there seems to be a follow up problem: After the login to home assitant the browser seems to hang in a redirection loop. Here are the logs:

Navigated to https://test.csc2024.browzer.cloudziti.io/
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://dev-pn2w8hqnw5wej8ai.eu.auth0.com/oidc/logout/confirm?state=4_mgX_EHTFjFZdUU4WAO6-59Pp01pAhD
Navigated to https://test.csc2024.browzer.cloudziti.io/
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://dev-pn2w8hqnw5wej8ai.eu.auth0.com/u/login?state=hKFo2SBwZVp2aG91NThyTS1zMTZiOUxmMzBwaXUtMXoyVG9EZaFur3VuaXZlcnNhbC1sb2dpbqN0aWTZIF9jY2hoaXI3cC0yWC1OdWp3UThkcVRIT0lyUTVYNkRPo2NpZNkgM1diN1hYYkU2Q1RXcmVYZ0JTMEFDU0dYVndBc2cyRmI
Navigated to https://test.csc2024.browzer.cloudziti.io/?code=0k3mjyd-bZZcox1U1WPcmUuFOiwupvVYfDLACZZam735a&state=gIOOaH1ifvrjxO4Ah3_98ZelVvRtmxf1f7ckkhu71gE
VM16:215066 Ziti BrowZer Runtime is now Bootstrapping
VM16:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:before SSL initialization
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS write client hello
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS write client hello
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS read server hello
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:TLSv1.3 read encrypted extensions
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS read server certificate request
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS read server certificate
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:TLSv1.3 read server certificate verify
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS read finished
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS write change cipher spec
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS write client certificate
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS write certificate verify
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS write finished
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSL negotiation finished successfully
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSL negotiation finished successfully
ziti-browzer-sw--ziti-browzer-sw-workbox-strategies--aa856a5e.js:34907 SSL_connect:SSLv3/TLS read server session ticket
Navigated to https://test.csc2024.browzer.cloudziti.io/
fingerprinting.js:215066 Ziti BrowZer Runtime is now Bootstrapping
fingerprinting.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/auth/authorize?response_type=code&redirect_uri=https%3A%2F%2Ftest.csc2024.browzer.cloudziti.io%2F%3Fauth_callback%3D1&client_id=https%3A%2F%2Ftest.csc2024.browzer.cloudziti.io%2F&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9
collapser.js:215066 Ziti BrowZer Runtime is now Bootstrapping
collapser.js:215070 ZBR Logging Begins...
authorize:1 Autofocus processing was blocked because a document already has a focused element.
menu.js:4 [Violation] Added non-passive event listener to a scroll-blocking 'wheel' event. Consider marking event handler as 'passive' to make the page more responsive. See https://www.chromestatus.com/feature/5745543795965952
S @ menu.js:4
m @ menu.js:9
Y @ menu.js:4
m @ menu.js:9
Y @ menu.js:4
m @ menu.js:9
p @ menu.js:9
M @ menu.js:4
R @ menu.js:4
menu.js:4 [Violation] Added non-passive event listener to a scroll-blocking 'wheel' event. Consider marking event handler as 'passive' to make the page more responsive. See https://www.chromestatus.com/feature/5745543795965952
S @ menu.js:4
m @ menu.js:9
Y @ menu.js:4
m @ menu.js:9
Y @ menu.js:4
m @ menu.js:9
m @ menu.js:9
Y @ menu.js:4
m @ menu.js:9
p @ menu.js:9
M @ menu.js:4
R @ menu.js:4
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
Navigated to https://test.csc2024.browzer.cloudziti.io/?auth_callback=1&code=4b00375857ff4344a7ea3538354e9a22&state=eyJoYXNzVXJsIjoiaHR0cHM6Ly90ZXN0LmNzYzIwMjQuYnJvd3plci5jbG91ZHppdGkuaW8iLCJjbGllbnRJZCI6Imh0dHBzOi8vdGVzdC5jc2MyMDI0LmJyb3d6ZXIuY2xvdWR6aXRpLmlvLyJ9&storeToken=true
ziti-browzer-runtime-2f6be57b.js:215066 Ziti BrowZer Runtime is now Bootstrapping
ziti-browzer-runtime-2f6be57b.js:215070 ZBR Logging Begins...
15

I get this far:

image
image918×1096 31.9 KB

If you can DM me some login creds, I'll look into the loop you reported.

1 Like