Fix HostAuthorization blocking all RSpec request specs #103

New issue

Closed

opened 2026-06-04 12:31:24 +00:00 by ldraney · 1 comment

ldraney commented 2026-06-04 12:31:24 +00:00

Owner

Copy link

Type

Bug

Lineage

Standalone — discovered while running RSpec suite for PR #102.

Repo

ldraney/landscaping-assistant

What Broke

Every RSpec request spec returns 403 Forbidden with "Blocked hosts: www.example.com". The test config at config/environments/test.rb:32 has config.hosts.clear, which should allow all hosts, but Rails 8.1's HostAuthorization middleware still rejects www.example.com (RSpec's default request host). This breaks ALL 50+ request specs — only model specs pass.

Error in test output:

Blocked hosts: www.example.com

Repro Steps

1. Run docker compose exec web bundle exec rspec
2. Observe: every request spec returns 403 Forbidden
3. Response body contains Rails "Blocked hosts" error page instead of app content

Expected Behavior

Request specs should reach the application and return normal responses. config.hosts.clear in test.rb should disable host checking entirely.

Environment

• Cluster/namespace: local Docker dev
• Service version/commit: Rails 8.1.3, Ruby 3.4.0
• Related alerts: none — test-only issue

Acceptance Criteria

• Bug no longer reproduces — bundle exec rspec passes request specs
• No regression in development or production host config
• Fix is minimal (1-2 lines in test.rb)

Related

• PR #102 — where this was discovered
• config/environments/test.rb:32 — current (broken) host config

### Type Bug ### Lineage Standalone — discovered while running RSpec suite for PR #102. ### Repo `ldraney/landscaping-assistant` ### What Broke Every RSpec request spec returns 403 Forbidden with "Blocked hosts: www.example.com". The test config at `config/environments/test.rb:32` has `config.hosts.clear`, which should allow all hosts, but Rails 8.1's `HostAuthorization` middleware still rejects `www.example.com` (RSpec's default request host). This breaks ALL 50+ request specs — only model specs pass. Error in test output: ``` Blocked hosts: www.example.com ``` ### Repro Steps 1. Run `docker compose exec web bundle exec rspec` 2. Observe: every request spec returns 403 Forbidden 3. Response body contains Rails "Blocked hosts" error page instead of app content ### Expected Behavior Request specs should reach the application and return normal responses. `config.hosts.clear` in test.rb should disable host checking entirely. ### Environment - Cluster/namespace: local Docker dev - Service version/commit: Rails 8.1.3, Ruby 3.4.0 - Related alerts: none — test-only issue ### Acceptance Criteria - [ ] Bug no longer reproduces — `bundle exec rspec` passes request specs - [ ] No regression in development or production host config - [ ] Fix is minimal (1-2 lines in test.rb) ### Related - PR #102 — where this was discovered - `config/environments/test.rb:32` — current (broken) host config

ldraney commented 2026-06-04 12:36:42 +00:00

Author

Owner

Copy link

Scope Review: READY

Review note: review-1315-2026-06-04

Ticket is well-scoped: all bug template sections present, file target verified (config/environments/test.rb:32 contains config.hosts.clear), single-repo fix, 3 verifiable acceptance criteria, no blocking dependencies. 1-point bug fix — no decomposition needed.

Two pre-existing documentation gaps flagged (not blocking):

• [SCOPE] Add "testing" user story entry to project-landscaping-assistant user-stories section
• [SCOPE] Create architecture note arch-rails-app (used by 20+ board items)

## Scope Review: READY Review note: `review-1315-2026-06-04` Ticket is well-scoped: all bug template sections present, file target verified (`config/environments/test.rb:32` contains `config.hosts.clear`), single-repo fix, 3 verifiable acceptance criteria, no blocking dependencies. 1-point bug fix — no decomposition needed. Two pre-existing documentation gaps flagged (not blocking): - `[SCOPE]` Add "testing" user story entry to project-landscaping-assistant user-stories section - `[SCOPE]` Create architecture note arch-rails-app (used by 20+ board items)

ldraney referenced this issue from a commit 2026-06-04 12:36:43 +00:00

Fix HostAuthorization blocking all RSpec requests in Rails 8.1

ldraney referenced this issue from a pull request that will close it, 2026-06-04 12:36:58 +00:00

Fix HostAuthorization blocking all RSpec requests in Rails 8.1 #104

ldraney closed this issue 2026-06-04 16:38:16 +00:00

ldraney referenced this issue 2026-06-07 17:52:14 +00:00

Enable Keycloak auth in dev environment (docker-compose + terraform redirect URI) #164

ldraney referenced this issue 2026-06-16 01:46:12 +00:00

Fix HostAuthorization blocking k8s health probes and Tailscale hostname #231

ldraney referenced this issue from a pull request that will close it, 2026-06-16 01:52:33 +00:00

Fix HostAuthorization blocking k8s probes and Tailscale hostname #232

ldraney referenced this issue from a pull request that will close it, 2026-06-16 01:54:21 +00:00

Fix HostAuthorization blocking k8s probes and Tailscale hostname #232

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

docs/update-app-architecture

revert-213

move-other-crew-bottom-remove-schedule

feature/today-view-improvements

154-enable-assume-ssl

revert-145-person-icon

docs/user-stories-auth

docs/update-infra-pipeline-post-incident

fix-cache-step-blocking-deploy

fix-kaniko-registry-pull

deactivate-from-today

feature/quick-address-entry

No results found.

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

ldraney/landscaping-assistant#103

No description provided.