I'll leave the question up just in case someone else sees this.
I'm running the latest version of Umbraco on Azure. I have a rule in my web.config that redirects all traffic to HTTPS.
When I run the healthcheck, everything passes except for the click-jacking protection.
Here's the error I get
"Error pinging the URL http://sitename:443 - 'The underlying connection was closed: An unexpected error occurred on a receive.'"
I know that http://sitename:443 returns nothing - I've tried with curl -i and get an empty reply. This is how it should be. Azure will not serve HTTP over 443.
My question is, why is Umbraco pinging http in the first place? It should be pinging https, right?
I'm getting the same problem in v8.0.2, was this resolved? ("Error pinging the URL https://...") for all three click-jacking, MIME sniffing, cookie hijacking checks. Running an intranet site on IIS, have set umbracoApplicationUrl="https://ourintratnet.org" in web.routing, have UseHttps = true, etc. Get the same error whether we have http->https rewrite rules in place or not. Wondering if this relates to the every-5-minute KeepAlive log errors we get also.
Still annoying to have those warnings pop up in the logs every 5 minutes, but changing the IIS settings at least mimics the same "keep alive" function.
Healthcheck Click-Jacking protection fails with an odd error.
Edit - I answered my own question, see here -> https://github.com/umbraco/Umbraco-CMS/commit/dc9b2b3ca8e46dbc358cbdda626441a4378531bd
it's a bug.
I'll leave the question up just in case someone else sees this.
I'm running the latest version of Umbraco on Azure. I have a rule in my web.config that redirects all traffic to HTTPS.
When I run the healthcheck, everything passes except for the click-jacking protection.
Here's the error I get
"Error pinging the URL http://sitename:443 - 'The underlying connection was closed: An unexpected error occurred on a receive.'"
I know that http://sitename:443 returns nothing - I've tried with curl -i and get an empty reply. This is how it should be. Azure will not serve HTTP over 443.
My question is, why is Umbraco pinging http in the first place? It should be pinging https, right?
This is a bug fixed in the upcoming version 7.5.4 - http://issues.umbraco.org/issue/U4-9000
I'm getting the same problem in v8.0.2, was this resolved? ("Error pinging the URL https://...") for all three click-jacking, MIME sniffing, cookie hijacking checks. Running an intranet site on IIS, have set umbracoApplicationUrl="https://ourintratnet.org" in web.routing, have UseHttps = true, etc. Get the same error whether we have http->https rewrite rules in place or not. Wondering if this relates to the every-5-minute KeepAlive log errors we get also.
Hi Eric,
We get same error in 7.12.4, did you find what the issue was?
Kind Regards,
Gary Henshall
Never did get it resolved (still an issue in 8.1.1).
Because our site is a low-traffic intranet, we decided to ignore the keepalive issue, and instead set IIS application pool parameters to disable Rapid-Fail Protection (per this article: https://our.umbraco.com/forum/using-umbraco-and-getting-started/95762-website-down-every-day-for-a-few-minutes-recurrently-umbraco-763), and to adjust a few other settings so that the application pool basically never recycles, just stays alive.
Still annoying to have those warnings pop up in the logs every 5 minutes, but changing the IIS settings at least mimics the same "keep alive" function.
is working on a reply...