On 2/1/22 9:03 AM, emmexx wrote: > wicket links or buttons take to a white page or have no UI response. > The response to POSTs commands result in a 403 error.
I found out what is the difference between the production server where I get the 403 error and the test server where geoserver is working properly. The urls and wicket links in the test server have a jsessionid query parameter, those in the production server are missing that parameter. E.g.: test server url of Geoserver Logs page: http://myserver:8080/geoserver/web/wicket/bookmarkable/org.geoserver.web.admin.LogPage;jsessionid=2EA4F1686D701EB63B5097424C4B5104?5&filter=false production server url of Geoserver Logs page: http://mytestserver:8080/geoserver/web/wicket/bookmarkable/org.geoserver.web.admin.LogPage?5&filter=false test server post request header for Layers - Add a new layer: POST /geoserver/web/wicket/bookmarkable/org.geoserver.web.data.layer.NewLayerPage;jsessionid=5EA4F1626D701EB63A5097424C4C5104?7-1.IBehaviorListener.0-selector-storesDropDown HTTP/1.1 Host: mytestserver:8080 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:84.0) Gecko/20100101 Firefox/84.0 Accept: application/xml, text/xml, */*; q=0.01 Accept-Language: it,en-GB;q=0.8,en;q=0.5,en-US;q=0.3 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded; charset=UTF-8 Wicket-Ajax: true Wicket-Ajax-BaseURL: wicket/bookmarkable/org.geoserver.web.data.layer.NewLayerPage?7 X-Requested-With: XMLHttpRequest Content-Length: 64 Origin: http://vps3.fiab-onlus.it:8080 DNT: 1 Connection: keep-alive Referer: http://mytestserver:8080/geoserver/web/wicket/bookmarkable/org.geoserver.web.data.layer.NewLayerPage;jsessionid=5EA4F1626D701EB63A5097424C4C5104?7 Cookie: __utma=13064664.604562777.1555082810.1599127173.1690779464.61; _firstImpression=true production server post request header for Layers - Add a new layer: POST /geoserver/web/wicket/bookmarkable/org.geoserver.web.data.layer.NewLayerPage?7-1.IBehaviorListener.0-selector-storesDropDown HTTP/1.1 Host: myserver:8080 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:84.0) Gecko/20100101 Firefox/84.0 Accept: application/xml, text/xml, */*; q=0.01 Accept-Language: it,en-GB;q=0.8,en;q=0.5,en-US;q=0.3 Accept-Encoding: gzip, deflate Content-Type: application/x-www-form-urlencoded; charset=UTF-8 Wicket-Ajax: true Wicket-Ajax-BaseURL: wicket/bookmarkable/org.geoserver.web.data.layer.NewLayerPage?7 X-Requested-With: XMLHttpRequest Content-Length: 64 Origin: http://vps4.fiab-onlus.it:8080 DNT: 1 Connection: keep-alive Referer: http://myserver:8080/geoserver/web/wicket/bookmarkable/org.geoserver.web.data.layer.NewLayerPage?7 Cookie: JSESSIONID=314595DAC5F6C128EFDA442D37A7481F; __utma=13061864.604592077.1555088110.1599427173.1600772464.61; _firstImpression=true The difference is that the jsessionid value is present both as a query parameter and as a cookie in the test server however it is present only as a cookie in the production server. I checked one by one the settings in the administrative panel (settings - global, security - settings, security - authentication, etc.) and they are the same in the 2 servers. I checked web.xml of geoserver and tomcat, server.xml of tomcat but I couldn't find any meaningful difference between the 2 servers. Jvm is the same (openjdk 11.0.3), OS is the same (CentOS 2.9.2009). Is it possible to set some parameter in geoserver or tomcat so that jsessionid is added as a query parameter to any urls? thank you maxx _______________________________________________ Geoserver-users mailing list Please make sure you read the following two resources before posting to this list: - Earning your support instead of buying it, but Ian Turton: http://www.ianturton.com/talks/foss4g.html#/ - The GeoServer user list posting guidelines: http://geoserver.org/comm/userlist-guidelines.html If you want to request a feature or an improvement, also see this: https://github.com/geoserver/geoserver/wiki/Successfully-requesting-and-integrating-new-features-and-improvements-in-GeoServer Geoserver-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/geoserver-users
