<html xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
span.spelle
{mso-style-name:spelle;}
span.EmailStyle20
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style>
</head>
<body lang="EN-US" link="blue" vlink="purple" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal">Hi,<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Have you seen this documentation on configuring ArchivesSpace for HTTPS?<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><a href="https://archivesspace.github.io/tech-docs/provisioning/https.html">https://archivesspace.github.io/tech-docs/provisioning/https.html</a><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Brian<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal" style="margin-bottom:12.0pt"><b><span style="font-size:12.0pt;color:black">From:
</span></b><span style="font-size:12.0pt;color:black">archivesspace_users_group-bounces@lyralists.lyrasis.org <archivesspace_users_group-bounces@lyralists.lyrasis.org> on behalf of Zachary L Pelli <zachary.pelli@shu.edu><br>
<b>Date: </b>Friday, July 23, 2021 at 12:16 PM<br>
<b>To: </b>ArchivesSpace List <archivesspace_users_group@lyralists.lyrasis.org><br>
<b>Subject: </b>[Archivesspace_Users_Group] Setting up the "Request" button<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal">Hey all,<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">I am attempting to configure the Request button bot am having an issue. Clicking the button currently gives you a page with this message:<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">The change you wanted was rejected.<o:p></o:p></p>
<p class="MsoNormal">Maybe you tried to change something you didn't have access to.<o:p></o:p></p>
<p class="MsoNormal">If you are the application owner check the logs for more information.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">In the logs, This is what it looks like:<o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
<p class="MsoNormal">INFO: [collection1] webapp= path=/select params={mm=100%25&q=(uri:("\/repositories\/2\/resources\/420\/tree\/node_from_root_62239"))&csv.escape=\&csv.header=true&start=0&csv.encapsulator="&fq=-exclude_by_default:true&fq=publish:true&fq=types:pui&rows=1&wt=json&facet=true}
hits=1 status=0 <span class="spelle">QTime</span>=1<o:p></o:p></p>
<p class="MsoNormal">W, [2021-07-22T16:13:17.109289 #18540] WARN -- : [66b8b6dd-8d7b-4984-b753-ddf9212e6e12] HTTP Origin header (<a href="https://archivesspace-library.shu.edu">https://archivesspace-library.shu.edu</a>) didn't match
<span class="spelle">request.base_url</span> (<a href="http://archivesspace-library.shu.edu">http://archivesspace-library.shu.edu</a>)<o:p></o:p></p>
<p class="MsoNormal">F, [2021-07-22T16:13:17.120038 #18540] FATAL -- : [66b8b6dd-8d7b-4984-b753-ddf9212e6e12]<o:p></o:p></p>
<p class="MsoNormal">F, [2021-07-22T16:13:17.120263 #18540] FATAL -- : [66b8b6dd-8d7b-4984-b753-ddf9212e6e12]
<span class="spelle">ActionController</span>::<span class="spelle">InvalidAuthenticityToken</span> (<span class="spelle">ActionController</span>::<span class="spelle">InvalidAuthenticityToken</span>):<o:p></o:p></p>
<p class="MsoNormal">F, [2021-07-22T16:13:17.120366 #18540] FATAL -- : [66b8b6dd-8d7b-4984-b753-ddf9212e6e12]<o:p></o:p></p>
<p class="MsoNormal">F, [2021-07-22T16:13:17.120480 #18540] FATAL -- : [66b8b6dd-8d7b-4984-b753-ddf9212e6e12]
<span class="spelle">actionpack</span> (5.2.5) lib/<span class="spelle">action_controller</span>/metal/request_forgery_protection.rb:211:in `<span class="spelle">handle_unverified_request</span>'<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">I understand this is an issue with Rails and SSL, but am unsure how to resolve this. Nothing in the configs seems to affect it. Any help appreciated.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal"><span style="font-size:12.0pt">Regards,</span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-size:12.0pt"> </span><o:p></o:p></p>
<p class="MsoNormal"><span style="font-size:14.0pt">Zach Pelli</span><o:p></o:p></p>
<p class="MsoNormal">Digital Collections Infrastructure Developer<o:p></o:p></p>
<p class="MsoNormal">Seton Hall University Libraries<o:p></o:p></p>
<p class="MsoNormal">973.275.2046<o:p></o:p></p>
<p class="MsoNormal"> <o:p></o:p></p>
</div>
</div>
</body>
</html>