This guidence is to provide useful troubleshooting guide based on the common issues customers encountered and resolved in the past years.
- Client side
ERR_CONNECTION_ - 414 URI Too Long
- 413 Payload Too Large
For HTTP/2, the max length for a single header is 4K, so if you are using browser to access Azure service, you will encounter this limitation with ERR_CONNECTION_ error.
For HTTP/1.1, or c# clients, the max URI length is 12K, max header length is 16K.
With SDK version 1.0.6 or higher, /negotiate will throw 413 Payload Too Large when the generated access token is larger than 4K.
By default, claims from context.User.Claims are included when generating JWT access token to ASRS(Azure SignalR Service), so that the claims are preserved and can be passed from ASRS to the Hub when the client connects to the Hub.
In some cases, context.User.Claims are leveraged to store lots of information for app server, most of which are not used by Hubs but by other components.
The generated access token are passed through network, and for websocket/SSE connections, access tokens are passed through query strings. So as the best practice, we suggest only passing neccessory claims from client through ASRS to your app server.
There is a ClaimsProvider for you to customize the claims passing to ASRS inside the access token.
For ASP.NET Core:
services.AddSignalR()
.AddAzureSignalR(options =>
{
// pick up neccessory claims
options.ClaimsProvider = context => context.User.Claims.Where(...);
});For ASP.NET:
services.MapAzureSignalR(GetType().FullName, options =>
{
// pick up neccessory claims
options.ClaimsProvider = context.Authentication?.User.Claims.Where(...);
});- How to view the outgoing request from client?
Take ASP.NET Core one for example (ASP.NET one is similar):
-
From browser:
Take chrome for example, F12 to open the console window, and switch to Network tab. You might need to refresh the page using F5 to capture the network from the very beginning.
-
From C# client:
You can view local web traffics using Fiddler. WebSocket traffics are supported since Fiddler 4.5.
-
- ASP.Net "No server available" error #279
- ASP.Net "The connection is not active, data cannot be sent to the service." error #324
- "An error occurred while making the HTTP request to https://. This could be due to the fact that the server certificate is not configured properly with HTTP.SYS in the HTTPS case. This could also be caused by a mismatch of the security binding between the client and the server."
Azure Service only support TLS1.2 for security concerns. With .NET framework, it is possible that TLS1.2 is not the default protocol. As a result, the server connections to ASRS can not be successfully established.
-
If this error can be repro-ed locally, uncheck Just My Code and throw all CLR exceptions and debug the app server locally to see what exception throws.
-
Uncheck Just My Code
-
Throw CLR exceptions
-
See the exceptions throw when debugging the app server side code:
-
-
For ASP.NET ones, you can also add following code to your
Startup.csto enable detailed trace and see the errors from the log.
app.MapAzureSignalR(this.GetType().FullName);
// Make sure this switch is called after MapAzureSignalR
GlobalHost.TraceManager.Switch.Level = SourceLevels.Information;Add following code to your Startup:
ServicePointManager.SecurityProtocol = SecurityProtocolType.Tls12;For a SignalR persistent connection, it first /negotiate to Azure SignalR service and then establish the real connection to Azure SignalR service. Our load balancer must ensure that the /negotiate request and the following connect request goes to the similar instance of the Service otherwise 404 occurs. Our load balancer now relies on the signature part of the generated access_token to keep the session sticky.
- Following How to view outgoing requests to get the request from client the the service.
- Check if there are multiple
access_tokeninside the outgoing request. Our load balancer is not able to handle duplicateaccess_tokencorrectly, as described in #346. - Another 404 can happen when the connect request is handled more than 5 seconds after
/negotiateis called. Check the timestamp of client request, and open an issue to us if the request to the service has very slow response.
Currently the default value of JWT token's lifetime is 1 hour.
For ASP.NET Core SignalR, when it is using WebSocket transport type, it is OK.
For ASP.NET Core SignalR's other transport type, SSE and longpolling, this means by default the connection can at most persist for 1 hour.
For ASP.NET SignalR, the client sends a /ping KeepAlive request to the service from time to time, when the /ping fails, the client aborts the connection and never reconnect. This means, for ASP.NET SignalR, the default token lifetime makes the connection lasts for at most 1 hour for all the transport type.
For security concerns, extend TTL is not encouraged. We suggest adding reconnect logic from client to restart the connection when such 401 occurs. When client restarts the connection, it will negotiate with app server to get the JWT token again and get a renewed token.
Sample code contains restarting connection logic with ALWAYS RETRY strategy:
This error is reported when there is no server connection to Azure SignalR Service connected.
Please enable server side trace to find out the error details when server tries to connect to Azure SignalR Service.
Server side logging for ASP.NET Core SignalR integrates with the ILogger based logging provided in the ASP.NET Core framework. You can enable server side logging by using ConfigureLogging, a sample usage as follows:
.ConfigureLogging((hostingContext, logging) =>
{
logging.AddConsole();
logging.AddDebug();
})When using SDK version >= 1.0.0, you can enable traces by adding the following to web.config: (Details)
<system.diagnostics>
<sources>
<source name="Microsoft.Azure.SignalR" switchName="SignalRSwitch">
<listeners>
<add name="ASRS" />
</listeners>
</source>
</sources>
<!-- Sets the trace verbosity level -->
<switches>
<add name="SignalRSwitch" value="Information" />
</switches>
<!-- Specifies the trace writer for output -->
<sharedListeners>
<add name="ASRS" type="System.Diagnostics.TextWriterTraceListener" initializeData="asrs.log.txt" />
</sharedListeners>
<trace autoflush="true" />
</system.diagnostics>When client is connected to the Azure SignalR, the persistent connection between client and Azure SignalR can sometimes drop for different reasons. This section describes several possibilities causing such connection drop, and provides some guidance to how to identify the root cause.
The remote party closed the WebSocket connection without completing the close handshakeService timeout. 30.00ms elapsed without receiving a message from service.{"type":7,"error":"Connection closed with an error."}{"type":7,"error":"Internal server error."}
Client connections can drop under various circumstances:
- When
Hubthrows exceptions with the incoming request. - When the server connection it routed to drops, see below section for details on server connection drops.
- When network connectivity issue happens between client and SignalR Service.
- When SignalR Service has some internal errors such as instance restart, failover, deployment, and so on.
- Open app server side log to see if anything abnormal took place
- Check app server side event log to see if the app server restarted
- Create an issue to us providing time frame, and email the resource name to us
When app server starts, in the background, the Azure SDK starts to initiate server connections to the remote Azure SignalR. As described in Internals of Azure SignalR Service, Azure SignalR routes incoming client traffics to these server connections. Once a server connection is dropped, all the client connections it serves will be closed too.
As the connections between app server and SignalR Service are persistent connections, they may experience network connectivity issues. In the Server SDK, we have Always Reconnect strategy to server connections. As the best practice, we also encourage users to add continuous reconnect logic to the clients with a random delay time to avoid massive simultaneous requests to the server.
On regular basis there are new version releases for the Azure SignalR Service, and sometimes the Azure wide OS patching or upgrades or occasionally interruption from our dependent services. These may bring in a very short period of service disruption, but as long as client side has the disconnect/reconnect mechanism, the impact is minimal like any client-side caused disconnect-reconnect.
This section describes several possibilities leading to server connection drop, and provides some guidance to how to identify the root cause.
[Error]Connection "..." to the service was droppedThe remote party closed the WebSocket connection without completing the close handshakeService timeout. 30.00ms elapsed without receiving a message from service.
Server-service connection is closed by ASRS(Azure SignalR Service).
- Open app server side log to see if anything abnormal took place
- Check app server side event log to see if the app server restarted
- Create an issue to us providing time frame, and email the resource name to us