Aug 27 2021 02:46 AM
The "Web Chat" channel works fine, but the "Microsoft Teams" doesn't. A few clues as to what might be going on...
1) If I point to an ngrok tunnel that goes directly to the https service (haproxy) it works fine.
2) I'm seeing the occasional portal.azure.com pre-flight (OPTIONS) request logged against the service, but nothing else.
So, Teams/Azure Bot can reach the service, and it would seem that it's pretending to be a browser and doing CORS stuff. I've permitted and exposed all the headers the pre-flight is asking for. I also respond with the required specific Origin -> https://portal.azure.com header and allow authentication (because Azure Bot sends an authorization header).
Any ideas about what could be going on?
Aug 30 2021 03:22 AM
@stephenmdyoung : Hey are you trying to run bot from local or have you deployed it on app service?
Also, the endpoint you are giving should be publicly accessible and in channels, it should be connected to Teams.
Please have a look at this: Connect a bot to Microsoft Teams
Aug 31 2021 08:42 PM
Sep 02 2021 09:37 AM
Sep 02 2021 06:14 PM
Sep 03 2021 06:47 AM
Hello @stephenmdyoung,
Please have a look at this FAQ. It explain which specific URLs you need to allow-list in your corporate firewall.
Also could please share your bot GUID Id that you used while creating bot channel registration or used in manifest.
Sep 03 2021 04:25 PM
Thanks for this @HunaidHanfee-MSFT
The endpoint sits on an AWS VM - not behind a corporate firewall. No incoming hosts/IP addresses are blocked at this stage - only ports.
The ask-kaybot Microsoft App ID is ee4a1ffe-1d28-4d74-9aeb-e27f25d9acc0 - I hope this is the GUID you need.
Sep 13 2021 02:59 PM
@nexus-steve - To keep you updated - We have find that you are getting an exception
Error when sending request to bot System.Net.Http.HttpRequestException: An error occurred while sending the request.
---> (Inner) System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel.
This might be the problem that is blocking request to get send. I am looking into this and working with internal team to get it sorted.
Thanks
Sep 13 2021 04:18 PM
Thanks for the update @HunaidHanfee-MSFT - your efforts are much appreciated.
Can you let me know what ciphers Teams/Azure is expecting? I'll make sure that haproxy has them covered.
Cheers
Steve
Oct 01 2021 11:18 AM
Solution@nexus-steve - these are the cipher suites that SMBA supports:
Oct 04 2021 01:10 AM
Oct 04 2021 05:05 PM
Oct 04 2021 10:54 PM
@stephenmdyoung
Thanks for updating,
If the response is helpful, please click "**Mark as Best Response**" and like it. This will increase the answer visibility and will help other users as well. You can share your feedback via Microsoft Teams Developer Feedback link. Click here to escalate.
Oct 01 2021 11:18 AM
Solution@nexus-steve - these are the cipher suites that SMBA supports: