Opened 18 years ago
Closed 18 years ago
#1591 closed defect (fixed)
when HTTPS and HTTP present, EclipseTrac insists on using HTTP
Reported by: | Owned by: | Matteo Merli | |
---|---|---|---|
Priority: | normal | Component: | EclipseTracPlugin |
Severity: | normal | Keywords: | patch |
Cc: | Trac Release: | 0.10 |
Description
I have a Trac server set up on a secure host. If someone enters in a URL for the host without the https:// the webserver issues a 302 response with a redirect to the URL over a secure connection.
Thus, if I go to: http://myhost/trac/login/ It will redirect to: https://myhost/trac/login/
I've noticed that when I try to login using the Eclipse Trac plugin, it makes a try to the unsecured host even if the trac server has an https URL. I have verified this by watching network dumps from wireshark and looking at my apache logs, which indicate it is connecting without SSL.
On a side note, my server is handing out HTTP 302 responses, the client should be able to interpret those.
Attachments (1)
Change History (5)
comment:1 Changed 18 years ago by
Keywords: | patch added |
---|
Changed 18 years ago by
Attachment: | EclipseTracSSL.patch added |
---|
patch to change from XmlRpcLiteHttpTransportFactory to XmlRpcSunHttpTransportFactory
comment:2 Changed 18 years ago by
Owner: | changed from Matteo Merli to anonymous |
---|---|
Status: | new → assigned |
Thanks, patch applied.
comment:3 Changed 18 years ago by
Owner: | changed from anonymous to Matteo Merli |
---|---|
Status: | assigned → new |
I did some digging and found out that the issue was with the usage of XmlRpcLiteHttpTransportFactory, and it's inability to handle the URL situation properly. No matter what it just couldn't run over HTTPS and didn't like getting those HTTP 302 redirects. I patched this to use the XmlRpcSunHttpTransportFactory, and now it seems to work fine. Tested it on connections to both an SSL and unsecured server.