<tt><font size=2>> From: mikem@redhat.com</font></tt>
<br><tt><font size=2>> <br>
> On 10/16/2013 06:28 PM, Michael Cronenworth wrote:<br>
> > John.Florian@dart.biz wrote:<br>
> >> However, if I try the login link on the web page, firefox
comes up with a<br>
> >> message stating:<br>
> >><br>
> >> The page isn't redirecting properly<br>
> > <br>
> > I believe this is a bug in the latest Koji. After Fedora 18 or
19 web<br>
> > login broke for me and I never investigated as to why as I never
use it.<br>
> > I use the CLI.<br>
> <br>
> The underlying bug is that koji's check for http vs https was breaking<br>
> on newer versions of mod_wsgi. This was fixed on the hub a while back,<br>
> but for some reason we missed it on the web ui.<br>
> <br>
> This commit should help:<br>
> </font></tt><a href=https://git.fedorahosted.org/cgit/koji/commit/?><tt><font size=2>https://git.fedorahosted.org/cgit/koji/commit/?</font></tt></a><tt><font size=2><br>
> id=cf01c000a83702ee74de67b2ead3bdef51591093<br>
</font></tt>
<br>
<br><tt><font size=2>Thanks Mike! That indeed seemed to get things
going in the right direction, but now my login link makes me think I have
a certificate error of sorts, yet everything looks good to me. Clicking
the login link gets me:</font></tt>
<br>
<br><tt><font size=2>==> /var/log/httpd/error_log <==</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669660 2013] [:error] [pid 623]
669 [ERROR] m=login u=None p=623 r=10.1.0.158:34806 koji.web: Traceback
(most recent call last):</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669694 2013] [:error] [pid 623]
File "/usr/share/koji-web/scripts/wsgi_publisher.py",
line 368, in handle_request</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669702 2013] [:error] [pid 623]
result = func(environ, **data)</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669707 2013] [:error] [pid 623]
File "/usr/share/koji-web/scripts/index.py", line 237,
in login</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669713 2013] [:error] [pid 623]
if not _sslLogin(environ, session, username):</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669717 2013] [:error] [pid 623]
File "/usr/share/koji-web/scripts/index.py", line 125,
in _sslLogin</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669722 2013] [:error] [pid 623]
proxyuser=username)</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669727 2013] [:error] [pid 623]
File "/usr/lib/python2.7/site-packages/koji/__init__.py",
line 1726, in ssl_login</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669732 2013] [:error] [pid 623]
sinfo = self.callMethod('sslLogin', proxyuser)</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669746 2013] [:error] [pid 623]
File "/usr/lib/python2.7/site-packages/koji/__init__.py",
line 1775, in callMethod</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669752 2013] [:error] [pid 623]
return self._callMethod(name, args, opts)</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669757 2013] [:error] [pid 623]
File "/usr/lib/python2.7/site-packages/koji/__init__.py",
line 1914, in _callMethod</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669761 2013] [:error] [pid 623]
raise err</font></tt>
<br><tt><font size=2>[Tue Oct 22 09:48:02.669766 2013] [:error] [pid 623]
AuthError: CN=mdct-koji.dartcontainer.com,OU=kojiweb,O=Dart Container Corp.,ST=Michigan,C=US
is not authorized to login other users</font></tt>
<br>
<br><tt><font size=2>My setup is as follows:</font></tt>
<br>
<br><tt><font size=2># grep ProxyDNs /etc/koji-hub/hub.conf</font></tt>
<br><tt><font size=2>ProxyDNs = /C=US/ST=Michigan/O=Dart Container Corp./OU=kojiweb/CN=mdct-koji.dartcontainer.com</font></tt>
<br>
<br><tt><font size=2># grep WebCert /etc/kojiweb/web.conf</font></tt>
<br><tt><font size=2>WebCert = /etc/pki/koji/kojiweb.pem</font></tt>
<br>
<br><font size=2 face="sans-serif"># grep Subject: /etc/pki/koji/kojiweb.pem</font>
<br><font size=2 face="sans-serif"> Subject:
C=US, ST=Michigan, O=Dart Container Corp., OU=kojiweb, CN=mdct-koji.dartcontainer.com</font>
<br>
<br><font size=2 face="sans-serif">... and just for giggles ...</font>
<br>
<br><font size=2 face="sans-serif"># grep kojiweb /etc/pki/koji/index.txt</font>
<br><font size=2 face="sans-serif">V 231014202129Z
03 unknown /C=US/ST=Michigan/O=Dart
Container Corp./OU=kojiweb/CN=mdct-koji.dartcontainer.com</font>
<br>
<br>
<br><font size=2 face="sans-serif">Did I miss something here or is there
another bug beyond the one resolved by the patch you provided?<br>
--<br>
John Florian</font>