Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

request to open data channel does not contain token

Tags:

websocket

go

aws-ssm

aws ssm start-session returns url and token to open WebSocket Connection. https://docs.aws.amazon.com/systems-manager/latest/APIReference/API_StartSession.html#API_StartSession_ResponseSyntax

Tried a client to open WebSocket connection: https://hashrocket.com/blog/posts/development-of-a-simple-command-line-websocket-client

But I am getting following error when trying to send input like {"type": "echo", "payload": "whoami"}

websocket: close 1003 (unsupported data): Channel : request to open data channel does not contain token.

I tried setting headers with multiple options like 

headers := make(http.Header)
headers.Add("Authorization", "Bearer " + token)
headers.Add("token_type", "bearer")
headers.Add("access_token", token)
headers.Add("token", token)
headers.Add("Authentication", token)

//  "github.com/gorilla/websocket"
ws, _, err := websocket.DefaultDialer.Dial(url, headers)

Most of the code is same as in 2nd link mentioned above except trying for wss (not ws).

I guess I am missing something in header. Any idea? Thx

Expected Behavior: Should be able to send requests (like above) and get responses successfully.

like image 458
Stranger Avatar asked Oct 17 '25 13:10

Stranger

1 Answers

You can use the Default Dialer with the ssm.StartSessionOutout.StreamUrl, without any auth headers:

conn, _, err := websocket.DefaultDialer.Dial(*ssmStartSessionOutput.StreamUrl, 
 nil)
if err != nil {
    log.Fatal(err)
}
defer conn.Close()

Then, send the ssm.StartSessionOutput token over the websocket connection. This will get you past the error in question:

v := struct {
    TokenValue string `json:"TokenValue"`
}{
    TokenValue: ssmStartSessionOutput.TokenValue,
 }
err := conn.WriteJSON(v)
if err != nil {
    return err
}

But, SSM StartSession's websocket implementation is virtually undocumented and rife with mysterious responses. I've had better luck starting the session-manager-plugin as a subprocess, passing the JSON-ified ssm.StartSessionOutput: 

v := struct {
    SessionID  string `json:"SessionId"`
    StreamURL  string `json:"StreamUrl"`
    TokenValue string `json:"TokenValue"`
}{
    SessionID:  ssmSessionOutput.SessionId,
    StreamURL:  ssmSessionOutput.StreamUrl,
    TokenValue: ssmSessionOutput.TokenValue,
}
j, err := json.Marshal(v)
if err != nil {
    return nil, err
}

cmd := exec.Command("session-manager-plugin", string(j), region, "StartSession")
cmd.Stdout = os.Stdout
cmd.Stdin = os.Stdin
cmd.Stderr = os.Stderr
err = cmd.Run()
like image 158
stinkyfingers Avatar answered Oct 20 '25 10:10

stinkyfingers

Sign in to Comment

Related questions

Go - Efficient way of converting float to pgtype.Numeric
Golang template: what is in the context?
golang Writer.Write() from bufio package vs WriteFile() from ioutil package
How to get a value which is a list from redis key-value store in golang?
Storing a Go project with other non-Go projects
Modifying responsebody in connect-go interceptor
Difference between differents test-flags of go test
curl: (56) Recv failure: Connection reset by peer in golang with docker
How to convert date to different formats?
http.Post data-binary, curl equivalent in golang
Convert a type struct A to B
golang http: how to route requests to handlers
Convert Slice of int64 to byte array and vice versa in GoLang
Requeue a kubernetes event in a non-blocking reconcile loop
How do I write to the memory in wasmer-go?
How to check reflect.Value is nil or not?
How to convert a string to google.protobuf.Timestamp?
How to get timestamp value out of Postgresql without time zone?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!