The request was rejected because the URL contained a potentially malicious String

1 min read

On spinnaker you might find find the following error:

The request was rejected because the URL contained a potentially malicious String \"//\"

This message can show up when clicking on the "Source" link for a pipeline

When deploying spinnaker you have to tell which is going to be the public facing URL for the web interface and the API endpoint. While doing so, if you configure it with a final slash the actual URL is appended to it so you end up with double slashes:

apiVersion: spinnaker.armory.io/v1alpha2
kind: SpinnakerService
metadata:
  name: spinnaker
spec:
  spinnakerConfig:
    config:
      security:
        apiSecurity:
          overrideBaseUrl: http://api.example.com/
        uiSecurity:
          overrideBaseUrl: http://www.example.com/

So, fixing this error message is as easy as removing the final slash


Posted on 03/03/2021