Error 401 - Authorization header is not passed in the redirected url after upgrading Chrome to version 119 #1208
Comments
|
I have the same issue after upgrading Microsoft Edge to version 119.0.2151.44. |
|
I'm experiencing this issue in Chrome Version 119.0.6045.106. |
|
I'm facing this issue as well after upgrading Chrome to the latest version (119.0.6045.105) Authorization header is always missing. I'm using Requestly via Chrome extension. |
|
Thank you @laurent-inqom @golfyos @RLSilveira @golfyos for informing us about this issue. This looks like a recent change from the Chrome side. We will follow up with the Chrome team about this. In the meantime, here is a work around :-
I have created a SharedList for you here - https://app.requestly.io/rules#sharedList/1699438081127-Add-Authorization-to-localhost I know it is not convenient (as it used to be earlier) but this should fix the issue for you temporarily. 
|
|
We don't see anything suspicious in the Chrome 119 change log - https://developer.chrome.com/blog/new-in-devtools-119/ as well. |
sachinjain024
changed the title
|
FYI, I work around by install an older version. It works as normal (I install version 117.0.5938.89) |
|
Chrome Enterprise release notes mentions this
|
|
I have created a simple Loom Video describing the issue - https://www.loom.com/share/f3af3e10154a4c9dae296dd3b7b62ea1 Steps to reproduce
In Chrome v118 Authorization header is being passed while in Chrome v119 Authorization header is not passed. |
@sagarsoni7 In this case, this is by design. We should check with the Chrome Extension team on how to handle this. PS - Initiated a conversation - https://groups.google.com/a/chromium.org/g/chromium-extensions/c/jdHOIfz-hfQ/m/Mrxip6NHAgAJ |
|
It seems that Firefox has the same behavior, |
|
Same here, started happening like a week ago |
* #1208 Relay auth header to redirected request * fix: init responseRuleHandler and removing temporary header * fix: compatibility check for auth header banner --------- Co-authored-by: Nafees Nehar <[email protected]>
|
Any idea when this fix will be live? @sachinjain024 |
|
Hey @Sheikh566 |
|
🚀 We have released the fix in |
|
Using the latest version of Chrome, Firefox, and Requestly. But the header is still not forwarded. |
|
It's still not working. The header is not being forwarded as it was previously. Chrome version: v120.0.6099.129 (Official Build) (arm64) |
|
Hi @Sheikh566 @golfyos |
|
rule: the request header when the rule is active the partial request header when the rule is not active response: my server log: |
|
@golfyos Can you please invoke the same fetch request (when the rule is active) once again after the page has loaded? I want to check if we have any race condition when the scripts are loaded and when the fetch request is fired. |
|
@nafees87n I've tried invoking the same fetch request after the page has loaded. Still not working |
|
@golfyos Any update? FTR. Authorization Header is still not forwarded. |
|
Thanks, @Postremus, for bumping this up. We will investigate what could be happening here. Could you share a website where we can replicate this? |
|
Hi |
|
Thanks @Postremus and @Sheikh566 for joining the call. It helped us identify the issue. We wouldn't have been able to do it without your help. |
|
@nafees87n Any update on getting this fix released? |
|
Hey @Postremus |
|
Awesome tool guys! please comment when this fix will be available! I am using the desktop version. |
|
Any updates? I am on version "24.2.17" of the chrome extension, still getting a 401. |
|
Hey @Postremus |
|
We have rolled out this in v24.3.5, which is at the 50% rollout stage. If no issues are reported further, we will make a 100% rollout by tomorrow. |
|
@nafees87n @sachinjain024 I am having the same issue on the Desktop App (Windows 11). I am logging traffic using the built-in proxy server. When using a Redirect or Modify URL Rule the 'Authorization' header is not being passed. Edit: |
|
I can confirm I am no longer getting the 401 with v24.3.5 |
|
Thanks for the confirmation @Postremus . Glad to know that it works |
|
This has been rolled out to 100% now. |
Thanks for reporting this. We will pick this up soon in the upcoming week. cc @nsrCodes |
|
Closing this issue as this has been rolled out completely. We will work on separate ticket for solving this in the desktop app. |
|
Hey, i started getting this issue a few weeks ago and recently discovered that the extension is the cause. I'm runnng 126.0.6478.62 on chrome and 24.5.27 on requestly. Weird thing is, it happens even if no rules are active, only by having the extension activated. if i deactivate it, it works. |
|
Hey @vitolrosario This issue is about |
Describe your issue?
Authorizationheader disapear from request headers when using replace string http rules. We identified that this issue happens after Chrome upgrade from 118 to 119 version. The http 'replace string' rules are used to redirect from my dev server to my localhost. We found a workaround that is using edge, but someone in the team has edge on version 119 and has the problem with Authorization header disapearing.Repro steps
What Requestly tool were you using?
Your Environment
Chrome (version 119) on Windows
Requestly Version
23.10.22
Error screenshot###
Error case, executed on chrome v119.0.6045.106
Ok case, on Edge v116.0.1938.69
As you can see, the Authorization header is automatically removed on our error case, as opposed to the OK case where everything is working as intended. Both set of screens were taken on the same environment, with the only diference being the browsers and its version (both being chromium am I right ?)
Thanks in advance for reading and for any help :visage_légèrement_souriant: !
The text was updated successfully, but these errors were encountered: