Asset canister response "Response verification failed" / "Body does not pass verification"

alexeychirkov · August 21, 2023, 8:43am

Asset canisters deployed under dfx >=0.13.1 responds with error for a request that has arbitrary characters in query string.

For example request with a query ?foo=%7B%22a%22%3A1%7D (which is the result of serialized state encodeURIComponent(JSON.stringify({a:1}))) leads to error:

“Response verification failed” on service worker “*.ic0.app” domain
“Body does not pass verification” on “*.raw.ic0.app” domain

As I understand double quote " is the cause of the error.

Even InternetIdentity website fails to load using url https://identity.ic0.app/?state=a%22s

@Severin maybe you can help?

alexeychirkov · August 23, 2023, 7:51am

@raymondk @domwoe @diegop please tag someone who can help

Kepler · August 24, 2023, 1:00pm

Hi @alexeychirkov

The issue was that response verification currently was decoding the entire URL as a whole, what happened is that for these cases it would break the format for the URI when you have and encoded query string.

I’ve created a PR with a fix for that, i’ll post here again once we’ve released it.

Topic		Replies	Views
The "Body does not pass verification" error from a Motoko canister Developers	12	1913	March 2, 2022
Body does not pass verification Developers Functional-Programming , Discussing	7	477	February 21, 2023
Service Worker Bug? Body does not pass verification Developers	23	2738	August 4, 2022
Website runs locally but not online - Error: Body does not pass verification/not found Developers	4	548	October 15, 2022
Error: Certificate verification failed Programs & Applications	4	1000	May 6, 2022

Asset canister response "Response verification failed" / "Body does not pass verification"

Related Topics