[
https://issues.apache.org/jira/browse/OFBIZ-9206?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15884172#comment-15884172 ]
Jacques Le Roux edited comment on OFBIZ-9206 at 2/25/17 10:03 AM:
------------------------------------------------------------------
Thanks Leonard,
Actually I asked you to test in OFBIZ-9224 because I thought it's maybe related but it could be it's not and then better to report your tries there.
Ah, and also the SystemProperty was only to confirm my idea on demo before working to find a defintive solution, which is finally the patch.
Since the demos rebuild from scratch every UTC morning the SystemProperty is no longer there anymore but everybody can still test the same and confirm the issue is not with the new certificate config (done through Puppet).
Here is for instance the config for the trunk
{code}
# ************************************
# Vhost template in module puppetlabs-apache
# Managed by Puppet
# ************************************
<VirtualHost demo-trunk.ofbiz.apache.org:443>
ServerName demo-trunk.ofbiz.apache.org
## Vhost docroot
DocumentRoot "/var/www/ofbiz/big-files"
## Directories, there should at least be a declaration for /var/www/ofbiz/big-files
<Directory "/var/www/ofbiz/big-files">
Options Indexes FollowSymLinks MultiViews
AllowOverride None
Require all granted
</Directory>
## Logging
ErrorLog "/var/log/apache2/ofbiz-ssl-trunk_error.log"
ServerSignature Off
CustomLog "/var/log/apache2/ofbiz-ssl-trunk.apache.org.http_access.log" combined
## SSL directives
SSLEngine on
SSLCertificateFile "/etc/letsencrypt/live/ofbiz-vm2.apache.org/cert.pem"
SSLCertificateKeyFile "/etc/letsencrypt/live/ofbiz-vm2.apache.org/privkey.pem"
SSLCertificateChainFile "/etc/letsencrypt/live/ofbiz-vm2.apache.org/chain.pem"
SSLCACertificatePath "/etc/ssl/certs"
## Custom fragment
ProxyRequests Off
ProxyPreserveHost On
ProxyPass / ajp://localhost:8009/
ProxyPassReverse / ajp://localhost:8009/
</VirtualHost>
{code}
We have also stable and old alike, bigfiles is used to serve static videos from
https://cwiki.apache.org/confluence/display/OFBIZ/Framework+Introduction+Videos+and+Diagramswas (Author: jacques.le.roux):
Thanks Leonard,
Actually I asked you to test in OFBIZ-9224 because I thought it's maybe related but it could be it's not and then better to report your tries there, thanks.
> Login and logout process in demos shows a certificate issue
> -----------------------------------------------------------
>
> Key: OFBIZ-9206
> URL:
https://issues.apache.org/jira/browse/OFBIZ-9206> Project: OFBiz
> Issue Type: Bug
> Components: Demo
> Reporter: Jacques Le Roux
> Assignee: Jacques Le Roux
> Priority: Minor
> Attachments: OFBIZ-9206.patch
>
>
> When, from the site main page
http://ofbiz.apache.org/, you get to the demos depending on browser (tested on Windows 7) you get some issues:
> * FF
> ** Management Apps: OK
> ** Ecommerce: OK
> * Chrome (Management Apps or Ecommerce)
> ** stable: OK
> ** old: KO - If you copy the URL by hand it works, and after even from the main page it works.
> ** trunk: OK
> * IE, same than Chrome
> If, from any browser, you logout from Management Apps you get a certificate issue. Actually as we use HSTS the browsers protect us from any 3rd party intrusions... Same issue when login in.
> So it seems we have a certificate issue after OFBIZ-7928 and INFRA-11960. Maybe it's due to how OFBiz redirects when login in or login out because, so far, only the login page is concerned...
--
This message was sent by Atlassian JIRA
(v6.3.15#6346)
Locked
