Hi Max, sorry you are still having issues.
please review below
Request URL: http://openhab3.yeslocal/rest/items?metadata=semantics
Request Method: GET
Status Code: 200 OK
Remote Address: 192.168.51.39:80
Referrer Policy: strict-origin-when-cross-origin
Access-Control-Allow-Credentials: True
Access-Control-Allow-Headers: Authorization,Accept,Origin,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
Access-Control-Allow-Methods: GET,POST,OPTIONS,PUT,DELETE,PATCH
Access-Control-Allow-Origin: *
Content-Type: application/json
Date: Fri, 24 Jun 2022 13:41:14 GMT
Server: Microsoft-IIS/10.0
Set-Cookie: X-OPENHAB-AUTH-HEADER=1
Transfer-Encoding: chunked
X-Powered-By: ARR/3.0
Accept: application/json
Accept-Encoding: gzip, deflate
Accept-Language: en-US,en;q=0.9
Authorization: Basic YWRtaW46VGhpc2lzb3BlbmhhYg==
Cache-Control: no-cache
Connection: keep-alive
Cookie: X-OPENHAB-AUTH-HEADER=1; X-OPENHAB-AUTH-HEADER=1; X-OPENHAB-SESSIONID=06e693d0-2e78-416b-b226-09a60532aa2e
Host: openhab3.yeslocal
Pragma: no-cache
Referer: http://openhab3.yeslocal/settings/items/
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/102.0.5005.124 Safari/537.36 Edg/102.0.1245.44
X-OPENHAB-TOKEN: eyJraWQiOm51bGwsImFsZyI6IlJTMjU2In0.eyJpc3MiOiJvcGVuaGFiIiwiYXVkIjoib3BlbmhhYiIsImV4cCI6MTY1NjA4MTE3NSwianRpIjoiMUNvcEp4RTlWalRXWjYyUHdSa0ViQSIsImlhdCI6MTY1NjA3NzU3NSwibmJmIjoxNjU2MDc3NDU1LCJzdWIiOiJhZG1pbiIsImNsaWVudF9pZCI6Imh0dHA6Ly9vcGVuaGFiMy55ZXNsb2NhbCIsInNjb3BlIjoiYWRtaW4iLCJyb2xlIjpbImFkbWluaXN0cmF0b3IiXX0.W5A2RF49Hv6mXBV9t4jXSGSws9jmCR62DtCpu44p6MBWDsrZLfUhcCPAZjgaROhJuSAo0gAQEVn0kOO7GJ8BeKNgKR3RUNGTg4kDh4g6owTy2JwU_uG4k7h4ezV2XO8cFiNPDS7bzhoG3OWTKmgMoHkepDpPRDzVCUjM3mki0ZyJtkOhM7vtE1xZ-RS821R1tv1brESxVxbYmo0XcfKDuk2bpFSsXyyKb3kon5ZICoJIy2vi6xpoKhBDszCLg2h2PMt3P5KX91t5rlthGXHxc3rD09Y7scxVJZenEh-eRmYkFbuURQTu9oPm8d3DKgYoYpq6wlAEk_he-JxPxsP8KA
X-Requested-With: XMLHttpRequest
and the config
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<system.web>
<customErrors mode="Off" />
<httpRuntime requestPathInvalidCharacters="<,>,%,&,\,?" />
<authentication mode="Windows" />
</system.web>
<system.webServer>
<rewrite>
<rules>
<rule name="ReverseProxyInboundRule1" stopProcessing="true">
<match url="(.*)" />
<action type="Rewrite" url="https://192.168.1.179:8443/{R:1}" />
<serverVariables>
<set name="HTTP_AUTHORIZATION" value="{AUTH_USER}" replace="false" />
<set name="HTTP_X_FORWARDED_FOR" value="$proxy_add_x_forwarded_for" />
<set name="HTTP_X_FORWARDED_HOST" value="{HTTP_HOST}" />
<set name="Authorization" value="""" />
<set name="RESPONSE_Set_Cookie" value="X-OPENHAB-AUTH-HEADER=1" />
</serverVariables>
</rule>
</rules>
<outboundRules>
<rule name="ReverseProxyOutboundRule1" preCondition="ResponseIsHtml1" enabled="true">
<match filterByTags="A, Form, Img" pattern="^http(s)?://192.168.1.179:8443/(.*)" />
<action type="Rewrite" value="{HTMLEncode:{HTTP_REFERER}}" />
</rule>
<preConditions>
<preCondition name="ResponseIsHtml1" logicalGrouping="MatchAny">
<add input="{RESPONSE_CONTENT_TYPE}" pattern="^text/html" />
<add input="{RESPONSE_CONTENT_TYPE}" pattern="^application/json" />
</preCondition>
</preConditions>
</outboundRules>
<allowedServerVariables>
<remove name="X_Forwarded-Proto" />
<remove name="X-Forwarded-For" />
<remove name="X-Forwarded-Prefix" />
<remove name="X-Real-IP" />
<remove name="X-Forwarded-Server" />
<remove name="X-Forwarded-Scheme" />
<remove name="X-Forwarded-Host" />
<add name="HTTP_X_FORWARDED_HOST" />
<add name="HTTP_X_FORWARDED_SCHEME" />
<add name="HTTP_X_FORWARDED_SERVER" />
<add name="HTTP_X_REAL_IP" />
<add name="HTTP_X_FORWARDED_PREFIX" />
<add name="HTTP_X_FORWARDED_FOR" />
<add name="HTTP_X_FORWARDED_PROTO" />
<add name="HTTP_COOKIE" />
<add name="ORIGINAL_HOST" />
<add name="ORIGINAL_URL" />
<add name="HTTP_X_OPENHAB_AUTH_HEADER" />
<add name="RESPONSE_Set_Cookie" />
<add name="HTTP_AUTHORIZATION" />
<add name="Authorization" />
</allowedServerVariables>
</rewrite>
<httpProtocol>
<customHeaders>
<remove name="X-Powered-By" />
<add name="Access-Control-Allow-Origin" value="*" />
<add name="Access-Control-Allow-Credentials" value="True" />
<add name="Access-Control-Allow-Headers" value="Authorization,Accept,Origin,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range" />
<add name="Access-Control-Allow-Methods" value="GET,POST,OPTIONS,PUT,DELETE,PATCH" />
</customHeaders>
</httpProtocol>
</system.webServer>
</configuration>
and here is the basic authorization settings
and the response headers
and the application pools
and of course the windows version.
“Hello. I checked your config, other people’s configs. I tried all the settings, I did a trace of OpenHUB requests - I do not believe that this works for anyone. Some kind of mistake or something.”
They say pictures are worth a 1000 words!
best regards