Apache
 » 
Maven
 » 
Nexus Maven Repository Manager
 » 
Nexus Maven Repository Manager Dev List

URL redirection

View: New views
1 Messages — Rating Filter:   Alert me  

URL redirection

by dtanner-2 :: Rate this Message:

Reply to Author | View Threaded | Show Only this Message

Some parts of this message have been removed. Learn more about Nabble's security policy.

I’m having a problem with URL redirection from within Nexus,

 

I’m using Nexus 1.2.1 war with apache 2.2.3 and Tomcat 5.5.25.

 

I’m trying to integrate Nexus with Shibboleth SSO.  The way this works is that I tag the Nexus URL that I want Shibboleth protected (this is done in the Shibboleth client configuration), then whenever the tagged URL is used the following should occur: 1) the HTTP request is temporarily redirected to the Shibboleth IP then 2) the Shibboleth IP does it’s thing then 3) the Shibboleth IP redirects the HTTP request back to the original Nexus URL.

 

So I configured the Shibboleth client and tested the configuration by doing the following:

 

1) I wrote a very simple test web application and deployed it to the Nexus Tomcat container,

2) I then tagged the test URL as being Shibboleth protected and executed the test URL.

 

Everything worked as expected, indicating that the Shibboleth client configuration is correct.

 

So I deployed the Nexus 1.2.1 war to the same Nexus Tomcat container and tagged the Nexus URL that I want Shibboleth protected.  When I execute the protected URL, I get the following error:

 

        Nexus returned an error: ERROR 302: Found

 

I then went and talked to the Shibboleth team and was told by them that this error means that Nexus was not allowing temporary URL redirection and that I will have to talk to the Nexus developers to have this issue resolved.

 

Since Shibboleth work fine in a Tomcat provided servlet, I would guess that Plexus has to be configured to allow for URL redirection.  I searched the Plexus documentation (which is a bit lacking) and found nothing useful.

 

Since you have extensive experience with Plexus, you have some insight as to how to resolve this issue.

 

Below are the HTTP header when I execute the protected Nexus URL:

 

Thanks,

 

 

 

https://maven-dev.mit.edu/nexus/service/local/touchstone/remoteuser?_dc=1235225686454

 

GET /nexus/service/local/touchstone/remoteuser?_dc=1235225686454 HTTP/1.1

Host: maven-dev.mit.edu

User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.1.17) Gecko/20080829 Firefox/2.0.0.17 (.NET CLR 3.5.30729)

Accept: application/json

Accept-Language: en-us,en;q=0.5

Accept-Encoding: gzip,deflate

Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7

Keep-Alive: 300

Connection: keep-alive

X-Requested-With: XMLHttpRequest

Referer: https://maven-dev.mit.edu/nexus/index.html

Cookie: JSESSIONID=26E1A0569657C910052E057B10699F27

 

HTTP/1.x 302 Found

Date: Sat, 21 Feb 2009 14:14:17 GMT

Server: Apache/2.2.3 (Red Hat) DAV/2 mod_ssl/2.2.3 OpenSSL/0.9.8b mod_jk/1.2.21

Set-Cookie: _shibstate_6e27e71352d12fa3b66a6cac8c6ebaccdd02b640=https%3A%2F%2Fmaven-dev.mit.edu%2Fnexus%2Fservice%2Flocal%2Ftouchstone%2Fremoteuser%3F_dc%3D1235225686454; path=/

Location: https://idp-staging.mit.edu/shibboleth-idp/SSO?shire=https%3A%2F%2Fmaven-dev.mit.edu%2FShibboleth.sso%2FSAML%2FPOST&time=1235225657&target=cookie&providerId=https%3A%2F%2Fmaven-dev.mit.edu%2Fshibboleth

Content-Length: 397

Keep-Alive: timeout=5, max=100

Connection: Keep-Alive

Content-Type: text/html; charset=iso-8859-1

----------------------------------------------------------

 

 

 

 

 

 

David Tanner

Massachusetts Institute of Technology

Information Services and Technology

W92-144

dtanner@...

617-253-0110

 

 
Free embeddable forum powered by Nabble Forum Help