GUI limited - Error 403 after update to 24.1.3_1

[astewart]

Hey guys,

Not exactly sure what is going on here but after updating to version 24.1.3_1, I have basically no access to most areas in the GUI. I cannot make any changes at all in the GUI, as I only have access to the 'diagnostic' pages and Insight. Insight has no data available.

I am using the cicada theme if that makes any difference. I only have a couple of plugins actually installed. No, I do not have os-dyndns installed either.

Anytime I type the URI to a specific section manually, I get error 403.
On the backend, I see the following errors:

latest config log:

Code: [Select]

<163>1 2024-03-07T15:19:06-04:00 firewall.local.redacted.com api 62235 - [meta sequenceId="541"] uri /api/diagnostics/firewall/log/?digest=&limit=100 not accessible for user root
<163>1 2024-03-07T15:19:08-04:00 firewall.local.redacted.com api 62235 - [meta sequenceId="544"] uri /api/interfaces/overview/interfacesInfo/1 not accessible for user root
<163>1 2024-03-07T15:19:12-04:00 firewall.local.redacted.com api 12917 - [meta sequenceId="549"] uri /api/core/service/search not accessible for user root
<163>1 2024-03-07T15:19:12-04:00 firewall.local.redacted.com api 53134 - [meta sequenceId="550"] uri /api/routes/gateway/status not accessible for user root
The latest audit log shows something similiar:

Code: [Select]

<38>1 2024-03-07T15:51:01-04:00 firewall.local.redacted.com configd.py 228 - [meta sequenceId="111"] action allowed firmware.product for user root
<38>1 2024-03-07T15:51:01-04:00 firewall.local.redacted.com configd.py 228 - [meta sequenceId="112"] action allowed system.temp for user root

I have already reboot twice but no change. I took a look at the permissions on the www files, and everything looks ok there. Root and Wheel, 644 are files and 755 are folders.

Any ideas what might be the cause here?

Thanks guys!

[astewart]

Anyone have any idea's what might be the issue here?

Is there a way on the backend to reset the permissions specifically on the web GUI?
I'm not 100% sure how the root users ACL might have changed since the GUI itself is not allowing root to access most web URIs.

[Fright]

Hi
"password policy constraints" enabled maybe?

[mvervelde]

Did you ever find a solution to this? Dealing with the same problem, similar setup.

[astewart]

Hi
"password policy constraints" enabled maybe?

I haven't set or changed anything in regards to "password policy constraints".

The ONLY thing that I did that is user related is create an additional user, which is part of the preexisting admin group. This user has limitations since I am only using it for the API, to be used by my HomeAssistant setup. I never touched anything relating to the 'root' user, or the admin group ACL.

Everything was working fine for the 3 days after adding the user. Once I updated to version 24.1.3_1, that's when the issues started.

To add, this is a fairly new setup/install as well.