Subbu Allamaraju wrote:
I notice the
following with Oracle consumer.
a. Redirect: I looked at the pbia response from the producer, and it
looks correct.
<soapenv:Envelope
xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
<soapenv:Body>
<urn:performBlockingInteractionResponse
xmlns:urn="urn:oasis:names:tc:wsrp:v1:types">
<urn:redirectURL>http://www.bea.com</urn:redirectURL>
</urn:performBlockingInteractionResponse>
</soapenv:Body>
</soapenv:Envelope>
However, the response headers that the browser is getting seem to be
incorrect. I noticed two redirect attempts by the browser with the
second one pointing to http://portalstandards.oracle.com/index.jsp.
With Mozilla Firebird, the final URL pointed to
http://portalstandards.oracle.com/index.jsp#{wsrp-fragmentID}.
Yes, but a request to http://www.bea.com itself returns a redirect to
the browser.
This is the proxied response we are receiving from our request to
www.bea.com and I can assure you we are not rewriting the Location
header.
HTTP/1.1 302 Moved Temporarily
Date: Tue, 02 Dec 2003 15:55:04 GMT
Content-Length: 215
Content-Type: text/plain
Cache-Control: private
X-ORACLE-CACHE-INFO1: None
Server: Oracle9iAS/9.0.2 Oracle HTTP Server Oracle9iAS-Web-Cache/Oracl
Surrogate-Control: no-store
Set-Cookie:
JSESSIONID=a4ba73bd9d1f4234b82a99f684e05333.rQjwaxqK-AXMmkbGngTxpQOUaN0KahD3lN4Oc2SSbMSLax8IahyL-x8Kn6bycgTAbhmRakbvbh4L-wOSa30K8Oz1iN8Ka2TRnk8MbN0IrlaIpR9vmQLz-AbJpgaMbNuSchixhOaOgzXepR9OmkKxhOaOgzXepR9OmkKxn6jAmljGr5XDqQLvpAe_;
Path=/portal
set-cookie:
wsrp=9.0.3+en-gb+us+UNITED%20KINGDOM+CD80D3574579C12AE030018A19B815C7+C4EB2173DCAC80158F882FF51E355D1E9CA2B0DEE90AE26FC47D6F75DDB53E02136841B4628B2B9E602F33CE1FB0EE4EFD0B02AC7E8CDB5312B80F8EEC4BAC6D68965CAE136A3C1F1EE248FB2BCEC39FB612F9B4BE8681E3;path=/
Location: http://portalstandards.oracle.com/index.jsp
Via: 1.1 inet-nc02 (NetCache NetApp/5.3.1R3)
<html><head><title>302 Moved
Temporarily</title></head>
<body bgcolor="#FFFFFF">
<p>This document you requested has moved temporarily.</p>
<p>It's now at <a
href="/index.jsp">/index.jsp</a>.</p>
</body></html>
Could you possibly return the actual home page URL of
http://www.bea.com/framework.jsp?CNT=homepage_main.jsp&FP=/content
as the redirect URL?
b. Secure resource: The image appears broken in the browser, but there
is no request made to the producer. The access logs on our producer
show a GET request for testUnsecure.gif, but there is no request for
testSecure.gif. So, it seems that the consumer may not be processing
the resource URL correctly. Since there is no request to the producer,
I can't tell if there is an SSL-configuration issue on either side.
Well first get the SSL configuration working. When I point a browser to
https://wsrp.avitek.com:7002/producer/rewrite/testSecure.gif, I get:
Forbidden
You were denied access because:
Access denied by access control list.
c. Templates: Here are the templates the producer received on the first
request
<ns0:defaultTemplate xsi:nil="1"/>
<ns0:blockingActionTemplate>wsrp_rewrite?wsrp-urlType=blockingAction&amp;wsrp-navigationalState={wsrp-navigationalState}&amp;wsrp-interactionState={wsrp-interactionState}&amp;wsrp-mode={wsrp-mode}&amp;wsrp-windowState={wsrp-windowState}&amp;wsrp-fragmentID={wsrp-fragmentID}/wsrp_rewrite</ns0:blockingActionTemplate>
<ns0:renderTemplate>wsrp_rewrite?wsrp-urlType=render&amp;wsrp-navigationalState={wsrp-navigationalState}&amp;wsrp-mode={wsrp-mode}&amp;wsrp-windowState={wsrp-windowState}&amp;wsrp-fragmentID={wsrp-fragmentID}/wsrp_rewrite</ns0:renderTemplate>
<ns0:resourceTemplate>wsrp_rewrite?wsrp-urlType=resource&amp;wsrp-url={wsrp-url}&amp;wsrp-requiresRewrite={wsrp-requiresRewrite}/wsrp_rewrite</ns0:resourceTemplate>
<ns0:secureDefaultTemplate xsi:nil="1"/>
<ns0:secureBlockingActionTemplate><![CDATA[wsrp_rewrite?wsrp-urlType=blockingAction&wsrp-secureURL=true&wsrp-navigationalState={wsrp-navigationalState}&wsrp-interactionState={wsrp-interactionState}&wsrp-mode={wsrp-mode}&wsrp-windowState={wsrp-windowState}&wsrp-fragmentID={wsrp-fragmentID}/wsrp_rewrite]]></ns0:secureBlockingActionTemplate>
<ns0:secureRenderTemplate>wsrp_rewrite?wsrp-urlType=render&amp;wsrp-secureURL=true&amp;wsrp-navigationalState={wsrp-navigationalState}&amp;wsrp-mode={wsrp-mode}&amp;wsrp-windowState={wsrp-windowState}&amp;wsrp-fragmentID={wsrp-fragmentID}/wsrp_rewrite</ns0:secureRenderTemplate>
<ns0:secureResourceTemplate>wsrp_rewrite?wsrp-urlType=resource&amp;wsrp-secureURL=true&amp;wsrp-url={wsrp-url}&amp;wsrp-requiresRewrite={wsrp-requiresRewrite}/wsrp_rewrite</ns0:secureResourceTemplate>
</ns0:templates>
For templates not enclosed in CDATA, every & is followed by
amp;, and it seems that "&" is encoded twice in each template. This
may explain the hidden param names for the method get portlet with
param names as "amp;wsrp-interactionState".
Yes this is still your problem. What you are sending me is the template
how it is encoded over the wire, not the actual arguments that would be
received by the procedure call. When each template is received from
your transport layer, each of the & entities will have been
replaced by '&', thus giving templates which themselves expand out
to HTML containing ampersand entities. Notice the one that your tunnel
has chosen to wrap as CDATA appears as you would expect it to appear,
because the extra escaping isn't necessary inside the CDATA.
Also, the consumer is writing the link to secure blocking action as a
http URL. Does your consumer support SSL?
It doesn't yet support 'port switching' I'm afraid.
Regards,
Subbu
To unsubscribe from this mailing list (and be removed from the roster
of the OASIS TC), go to
http://www.oasis-open.org/apps/org/workgroup/wsrp-interop/members/leave_workgroup.php.
--
David Ward
Principal Software Engineer
Portlet Technologies
Oracle Portal
|
Oracle European Development Centre
520 Oracle Parkway
Thames Valley Park
Reading
Berkshire RG6 1RA
UK |
|
|