Llyarden Posted August 10, 2023 Clone Share Posted August 10, 2023 (edited) Ran into this on an off-site game; not sure what's so special about this particular sheet, but instead of giving me the normal "I can't let you do that" error message - which shows up on other sheets just fine on the new site - it just kinda hangs at 'loading' forever; the only reason I even knew it was private (aside from the fact that I was expecting it to be) was because it logs a 403 response as normal in the network logs, but unlike other private sheets it also prints an error message in the console: Console Gobbledegook mw api json error false 403 Forbidden Response { type: "cors", url: "https://api.myth-weavers.com/api/v1/sheets/2795198/data", redirected: false, status: 403, ok: false, statusText: "Forbidden", headers: Headers(3), body: ReadableStream, bodyUsed: true } Object { message: "This action is unauthorized.", exception: "Symfony\\Component\\HttpKernel\\Exception\\AccessDeniedHttpException", file: "/var/task/vendor/laravel/framework/src/Illuminate/Foundation/Exceptions/Handler.php", line: 412, trace: (36) […] } index.js:2:72377 Ae https://www.myth-weavers.com/sheets/index.js:2 (Async: promise callback) Ae https://www.myth-weavers.com/sheets/index.js:2 e https://www.myth-weavers.com/sheets/index.js:2 u https://www.myth-weavers.com/sheets/index.js:2 w https://www.myth-weavers.com/sheets/index.js:2 y https://www.myth-weavers.com/sheets/index.js:2 je https://www.myth-weavers.com/sheets/index.js:2 i https://www.myth-weavers.com/sheets/index.js:2 Le https://www.myth-weavers.com/sheets/index.js:2 Le https://www.myth-weavers.com/sheets/index.js:2 $e https://www.myth-weavers.com/sheets/index.js:2 e https://www.myth-weavers.com/sheets/index.js:2 u https://www.myth-weavers.com/sheets/index.js:2 w https://www.myth-weavers.com/sheets/index.js:2 y https://www.myth-weavers.com/sheets/index.js:2 at https://www.myth-weavers.com/sheets/index.js:2 i https://www.myth-weavers.com/sheets/index.js:2 ot https://www.myth-weavers.com/sheets/index.js:2 ot https://www.myth-weavers.com/sheets/index.js:2 ct https://www.myth-weavers.com/sheets/index.js:2 39 https://www.myth-weavers.com/sheets/index.js:2 t https://www.myth-weavers.com/sheets/index.js:2 u https://www.myth-weavers.com/sheets/index.js:2 w https://www.myth-weavers.com/sheets/index.js:2 y https://www.myth-weavers.com/sheets/index.js:2 Rt https://www.myth-weavers.com/sheets/index.js:2 i https://www.myth-weavers.com/sheets/index.js:2 (Async: promise callback) Rt https://www.myth-weavers.com/sheets/index.js:2 i https://www.myth-weavers.com/sheets/index.js:2 e https://www.myth-weavers.com/sheets/index.js:2 n https://www.myth-weavers.com/sheets/index.js:2 e https://www.myth-weavers.com/sheets/index.js:2 Ft https://www.myth-weavers.com/sheets/index.js:2 al https://www.myth-weavers.com/sheets/index.js:2 kc https://www.myth-weavers.com/sheets/index.js:2 _c https://www.myth-weavers.com/sheets/index.js:2 _ https://www.myth-weavers.com/sheets/index.js:2 L https://www.myth-weavers.com/sheets/index.js:2 (Async: EventHandlerNonNull) 53 https://www.myth-weavers.com/sheets/index.js:2 o https://www.myth-weavers.com/sheets/runtime.js:1 840 https://www.myth-weavers.com/sheets/index.js:2 o https://www.myth-weavers.com/sheets/runtime.js:1 448 https://www.myth-weavers.com/sheets/index.js:2 o https://www.myth-weavers.com/sheets/runtime.js:1 935 https://www.myth-weavers.com/sheets/index.js:2 o https://www.myth-weavers.com/sheets/runtime.js:1 745 https://www.myth-weavers.com/sheets/index.js:2 o https://www.myth-weavers.com/sheets/runtime.js:1 39 https://www.myth-weavers.com/sheets/index.js:2 o https://www.myth-weavers.com/sheets/runtime.js:1 <anonymous> https://www.myth-weavers.com/sheets/index.js:2 r https://www.myth-weavers.com/sheets/runtime.js:1 <anonymous> https://www.myth-weavers.com/sheets/index.js:2 It looks kinda as though whatever checks whether we're allowed to access the sheet (and prints the 'I can't let you do that' message when we can't) isn't correctly judging that I'm not, and it's only when the viewer tries to access the contents of the sheet that the 403 is returned, whereas normally the 403 occurs and the user is denied access before it ever tries to download the contents. Edited August 10, 2023 by Llyarden (see edit history) Link to comment Share on other sites More sharing options...
Rodrigo Posted August 12, 2023 Clone Share Posted August 12, 2023 I've deployed a fix that should display the correct error to you when this occurs. Link to comment Share on other sites More sharing options...
Recommended Posts