Support » Plugin: Po.et » frost.po.et / explorer.poetnetwork.net DOA?

  • When I register, entering an email address and confirming the password, nothing happens after submission. No confirmation email, no content displayed (just a white page). Is this chain (po.et) dead?
    Is there another URl to get the api key the plugin needs.
    Not: The above happens with every browser I use, and with each device used, on different physical networks.

    Can anyone help?

    Thank you,
    Roger

    The page I need help with: [log in to see the link]

Viewing 10 replies - 16 through 25 (of 25 total)
  • Also…

    [~]# curl -vX OPTIONS https://explorer.poetnetwork.net/login
    * About to connect() to explorer.poetnetwork.net port 443 (#0)
    *   Trying 142.93.122.177...
    * Connected to explorer.poetnetwork.net (142.93.122.177) port 443 (#0)
    * Initializing NSS with certpath: sql:/etc/pki/nssdb
    *   CAfile: /etc/pki/tls/certs/ca-bundle.crt
      CApath: none
    * SSL connection using TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
    * Server certificate:
    *       subject: CN=explorer.poetnetwork.net
    *       start date: Nov 19 12:15:53 2018 GMT
    *       expire date: Feb 17 12:15:53 2019 GMT
    *       common name: explorer.poetnetwork.net
    *       issuer: CN=Let's Encrypt Authority X3,O=Let's Encrypt,C=US
    > OPTIONS /login HTTP/1.1
    > User-Agent: curl/7.29.0
    > Host: explorer.poetnetwork.net
    > Accept: */*
    >
    < HTTP/1.1 404 Not Found
    < Cache-Control: max-age=30, public
    < Content-Length: 9
    < Content-Security-Policy: require-sri-for script
    < Content-Type: text/html; charset=utf-8
    < Date: Thu, 03 Jan 2019 13:11:18 GMT
    < Referrer-Policy: same-origin
    < Strict-Transport-Security: max-age=31536000
    < X-Content-Type-Options: nosniff
    < X-Frame-Options: DENY
    < X-Nf-Srv-Version: 45aaffea081549dd03a2dfff644cc25cf522edbd
    < X-Request-Id: 34521f66-1263-4071-a9c4-1585ceb07c8a
    < X-Runtime: 0.033060
    < X-Xss-Protection: 1; mode=block
    < Age: 0
    < Connection: keep-alive
    < Server: Netlify
    < X-NF-Request-ID: f1527a42-1f2e-4cf9-bfb6-4deb215d3b81-13223439
    <
    * Connection #0 to host explorer.poetnetwork.net left intact
    Not Found

    api.poetnetwork.net has a CORS policy
    explorer.poetnetwork.net does not it seems (or did I miss something)?

    I hope all this information is helping 🙂

    Correct me if I’m wrong (just trying to figure out what’s happening)…

    I saw in the host: explorer.poetnetwork.net that the policy was “Referrer-Policy: same-origin” ==> To me at least it’s telling Firefox to only accept connections (resources) from the same domain explorer.poetnetwork.net, and not from api.poetnetwork.net (which would be cross-origin), no?

    The browser will only set the referrer header on requests to the same origin. If the destination is another origin then no referrer information will be sent. Should it instead be “Referrer-Policy: origin-when-cross-origin”?

    I’m guessing while api.poetnetwork.net does have CORS (we can see it in curl). A web browser cannot access and see it because of “Referrer-Policy: same-origin” is set at explorer.poetnetwork.net – Possibly then why those tests from web browsers + online testers are saying there is no CORS (because the cross-origin referrer is not allowed)?

    Source: https://scotthelme.co.uk/a-new-security-header-referrer-policy/

    If I use a web browser, that is a much older version, which ignores Access-Control-Allow headers, then a blank page is immediately displayed when I use it to try and visit: https://explorer.poetnetwork.net/login

    Thanks for all the info.

    So the auth is handled by the API, and is outside the realm of the WP plugin. The frontend (explorer.poetnetwork.net) handles the login through the API (https://api.poetnetwork.net)

    Can you have a look at the OpenAPI definition on Swagger, in particular the login methods

    You can also create an account from Swagger.

    This may help you debug your implementation somewhat.

    Be sure that your operations are directed at the API (https://api.poetnetwork.net), and not the frontend app.

    In the mean time I will bring your research to the rest of the team and see what we can make of it 🙂

    One of my friends just sent me this from https://explorer.poetnetwork.net/login after clicking sign up button:

    Content Security Policy: Couldn’t process unknown directive ‘require-sri-for’ (unknown)

    Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at https://api.poetnetwork.net/accounts. (Reason: CORS header ‘Access-Control-Allow-Origin’ missing). (unknown)

    TypeError: t.includes is not a function
    Stack trace:
    componentWillReceiveProps@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:49:291879
    No@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:48366
    ua@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:58448
    ma@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:63223
    Ga@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:78335
    Ka@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:78712
    Si@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:85135
    Yi@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:84515
    ki@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:83536
    Za@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:82439
    Po.enqueueSetState@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:47367
    b.prototype.setState@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:25:1652
    k/</s</u.onStateChange@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:11572
    b</t.trySubscribe/this.listeners<.notify@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:8331
    b</t.notifyNestedSubs@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:7968
    k/</s</u.onStateChange@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:11590
    b</t.trySubscribe/this.listeners<.notify@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:8331
    b</t.notifyNestedSubs@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:7968
    k/</s</u.onStateChange@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:11590
    _@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:38926
    u/</<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:30041
    p/</</o.dispatch@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:42094
    I/<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:1:5573
    O/</<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:25030
    a@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:18082
    l@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:18232
    i@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:18131
    O/<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:24987
    O@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:24934
    D@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:23188
    v@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:24039
    B/<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:27077
      app.0b52d506e8d9c3ee39c4.js:33:66024
    uncaught at d componentWillReceiveProps@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:49:291879
    No@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:48366
    ua@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:58448
    ma@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:63223
    Ga@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:78335
    Ka@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:78712
    Si@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:85135
    Yi@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:84515
    ki@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:83536
    Za@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:82439
    Po.enqueueSetState@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:33:47367
    b.prototype.setState@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:25:1652
    k/</s</u.onStateChange@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:11572
    b</t.trySubscribe/this.listeners<.notify@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:8331
    b</t.notifyNestedSubs@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:7968
    k/</s</u.onStateChange@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:11590
    b</t.trySubscribe/this.listeners<.notify@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:8331
    b</t.notifyNestedSubs@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:7968
    k/</s</u.onStateChange@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:11590
    _@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:38926
    u/</<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:30041
    p/</</o.dispatch@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:42094
    I/<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:1:5573
    O/</<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:25030
    a@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:18082
    l@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:18232
    i@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:18131
    O/<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:24987
    O@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:24934
    D@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:23188
    v@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:24039
    B/<@https://explorer.poetnetwork.net/app.0b52d506e8d9c3ee39c4.js:12:27077
      app.0b52d506e8d9c3ee39c4.js:1:5056

    It looks similar to some of the console messages I’ve been seeing.

    On swagger creating a new account returns (against api.poetnetwork.net):

    Code 500 Internal Server Error

    Response headers

    cache-control: no-cache
    content-length: 21
    content-type: text/plain; charset=utf-8
    date: Thu, 03 Jan 2019 14:32:55 GMT
    etag: W/”15-/6VXivhc2MKdLfIkLcUE47K6aH0″
    expires: -1
    server: nginx/1.14.0 + Phusion Passenger 5.3.4
    status: 500 Internal Server Error
    via: 1.1 966f5fd0c86bd4e9f829fca8c1e569b8.cloudfront.net (CloudFront)
    x-amz-cf-id: EoWA-QvdhK7IdL8ah9pdm2m0a7hrOoFT-eKyEqjZvW_50zzB5O9_Zg==
    x-cache: Error from cloudfront
    x-firefox-spdy: h2
    x-powered-by: Express, Phusion Passenger 5.3.4

    Code 200

    { “token”: “12345abcde6789FGHI” }

    Code 409

    The specified account already exists.

    Code 422

    One of the inputs is not valid.

    Since the last swagger attempt (to create the account) stated “The specified account already exists.” I decided to try the /password/reset – The output of that then said “400 The specified resource does not exist.” and threw an error 500 – Huh? Am I missing something 🙂
    I’ll play around a bit more with swagger.

    Please do keep me in the loop on this – Thanks muchly!
    Roger

    Woot woot!!! Alert!!!

    I just fixed the issue (I think) the web browser will report in web consule that there are errors including CORS. In fact, when I sent the applicable account credentials to others, to create, they reported the same thing.

    So in swagger I was using that account create, and receiving errors (including error 500).

    On a lark, I chose a different password while duplicating the server wide error 500, because I could not understand why there was a server error 500 in the first place, which did not make sense to me – And it worked. Huh??

    So it seems, there’s some character in the password, that triggered issues. That old password (which is not used anymore, anywhere) was: T3{*ReYHe1(?b2[+OV – I suspect there’s some character(s) in it that cause a chain of events, triggering various errors, that a web browser would report (inaccurately, in my opinion).

    So now… With this WP plugin, all I need to figure out is the API URL (https://api.frost.po.et/works or https://api.poetnetwork.net) and then figure out the API key to use (there’s a “test_” key, but don’t see a button to create a production key yet).

    Please can I make one suggestion? For the password issue, any chance of appending a note about which characters not to use 😉 to avoid all the errors getting triggered.

    For whoever sees this in future…

    The WP plugin should use the following API:
    https://api.poetnetwork.net/works
    Toggle the API key to use Mainnet and generate the key.
    Source: https://docs.poetnetwork.net/use-poet/wordpress-plugin.html

    Also, if you’re getting web console errors (like CORS) – Instead, change the password being used, there might be a character in it that when sent to the server for account creation, is causing an issue – Thus, change the password 😉

    Hi Roger!

    Glad you’ve got it sorted. So it def does seem like the front end and back end validation for the passwords are deviating somewhat. We’ve created an issue to look into this some more and make the errors a bit more forth coming.

    I also noticed that the README for the wordpress-plugin is referencing the legacy application.

    So you will need to get a token by logging into the web app on https://explorer.poetnetwork.net

    API tokens with TEST_ prefix will be for testnet. You will be able to toggle the live or mainnet network and create a production token from the new web app (above)

    And you will need to configure your plugin with the new production API URL: https://api.poetnetwork.net/works

    Let us know if you have any other issue!

Viewing 10 replies - 16 through 25 (of 25 total)
  • The topic ‘frost.po.et / explorer.poetnetwork.net DOA?’ is closed to new replies.