[
http://opencast.jira.com/browse/MH-8028?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=27626#comment-27626
]
Lovemore Nalube commented on MH-8028:
-------------------------------------
Integration tests over SSL break as well.
This is the conversation thread in the mail list:
------------------------------------------------------
Hey Josh
Thanks for the reply. Yes I was passing through the right parameters ie:
java -jar matterhorn-test-harness-1.1.0-jar-with-dependencies.jar -url
https://{url} -username admin -password opencast
Thanks
--
Lovemore Nalube
OLE Developer (Vula)
University of Cape Town
http://www.cet.uct.ac.za/LovemoreN
>>> On 7/15/2011 at 4:13 PM, in message
>>> <[email protected]>, Josh Holtzman
>>> <[email protected]> wrote:
You're running LtiAuthenticationTest... are you running this from the
integration test jar? If so, you need to pass the URL of the remote server as
a command line parameter, even if it's localhost (a different JVM is still
remote). Have a look at the setup code, it shows that the default url used in
the test is http://localhost:8080, not https.
Josh
On Jul 15, 2011, at 4:26 AM, Lovemore Nalube wrote:
Hi
I've tested this several times and rechecked my configurations and they seem
fine. All urls in the Opencast server are configured to be HTTPS and my Sakai
server has the right HTTPS url too.
I've run the Matterhorn Integration tests against HTTP and HTTPS urls and only
the HTTP url tests pass. The LTI tests fail against an HTTPS url with these
errors:
net.oauth.OAuthProblemException: HTTP/1.1 401 Invalid signature for signature
method HMAC-SHA1
at
net.oauth.client.OAuthResponseMessage.toOAuthProblemException(OAuthResponseMessage.java:83)
at net.oauth.client.OAuthClient.invoke(OAuthClient.java:306)
at
org.opencastproject.remotetest.server.LtiAuthenticationTest.testLtiLaunch(LtiAuthenticationTest.java:110)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at
org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:44)
at
org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:15)
at
org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.java:41)
at
org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.java:20)
at
org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:28)
at org.junit.internal.runners.statements.RunAfters.evaluate(RunAfters.java:31)
at
org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:76)
at
org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:50)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:193)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:52)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:191)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:42)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:184)
at
org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:28)
at org.junit.internal.runners.statements.RunAfters.evaluate(RunAfters.java:31)
at org.junit.runners.ParentRunner.run(ParentRunner.java:236)
at org.junit.runners.Suite.runChild(Suite.java:128)
at org.junit.runners.Suite.runChild(Suite.java:24)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:193)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:52)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:191)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:42)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:184)
at org.junit.runners.ParentRunner.run(ParentRunner.java:236)
at org.junit.runners.Suite.runChild(Suite.java:128)
at org.junit.runners.Suite.runChild(Suite.java:24)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:193)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:52)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:191)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:42)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:184)
at org.junit.runners.ParentRunner.run(ParentRunner.java:236)
at org.junit.runner.JUnitCore.run(JUnitCore.java:157)
at org.junit.runner.JUnitCore.run(JUnitCore.java:136)
at org.junit.runner.JUnitCore.run(JUnitCore.java:127)
at org.junit.runner.JUnitCore.runClasses(JUnitCore.java:76)
at org.opencastproject.remotetest.Main.main(Main.java:190)
net.oauth.OAuthProblemException: HTTP/1.1 401 Invalid signature for signature
method HMAC-SHA1
at
net.oauth.client.OAuthResponseMessage.toOAuthProblemException(OAuthResponseMessage.java:83)
at net.oauth.client.OAuthClient.invoke(OAuthClient.java:306)
at
org.opencastproject.remotetest.server.LtiAuthenticationTest.testLtiLaunchFromUnknownUser(LtiAuthenticationTest.java:171)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at
org.junit.runners.model.FrameworkMethod$1.runReflectiveCall(FrameworkMethod.java:44)
at
org.junit.internal.runners.model.ReflectiveCallable.run(ReflectiveCallable.java:15)
at
org.junit.runners.model.FrameworkMethod.invokeExplosively(FrameworkMethod.java:41)
at
org.junit.internal.runners.statements.InvokeMethod.evaluate(InvokeMethod.java:20)
at
org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:28)
at org.junit.internal.runners.statements.RunAfters.evaluate(RunAfters.java:31)
at
org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:76)
at
org.junit.runners.BlockJUnit4ClassRunner.runChild(BlockJUnit4ClassRunner.java:50)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:193)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:52)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:191)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:42)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:184)
at
org.junit.internal.runners.statements.RunBefores.evaluate(RunBefores.java:28)
at org.junit.internal.runners.statements.RunAfters.evaluate(RunAfters.java:31)
at org.junit.runners.ParentRunner.run(ParentRunner.java:236)
at org.junit.runners.Suite.runChild(Suite.java:128)
at org.junit.runners.Suite.runChild(Suite.java:24)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:193)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:52)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:191)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:42)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:184)
at org.junit.runners.ParentRunner.run(ParentRunner.java:236)
at org.junit.runners.Suite.runChild(Suite.java:128)
at org.junit.runners.Suite.runChild(Suite.java:24)
at org.junit.runners.ParentRunner$3.run(ParentRunner.java:193)
at org.junit.runners.ParentRunner$1.schedule(ParentRunner.java:52)
at org.junit.runners.ParentRunner.runChildren(ParentRunner.java:191)
at org.junit.runners.ParentRunner.access$000(ParentRunner.java:42)
at org.junit.runners.ParentRunner$2.evaluate(ParentRunner.java:184)
at org.junit.runners.ParentRunner.run(ParentRunner.java:236)
at org.junit.runner.JUnitCore.run(JUnitCore.java:157)
at org.junit.runner.JUnitCore.run(JUnitCore.java:136)
at org.junit.runner.JUnitCore.run(JUnitCore.java:127)
at org.junit.runner.JUnitCore.runClasses(JUnitCore.java:76)
at org.opencastproject.remotetest.Main.main(Main.java:190)
Please help :)
Thanks
--
Lovemore Nalube
OLE Developer (Vula)
University of Cape Town
http://www.cet.uct.ac.za/LovemoreN
>>> On 7/14/2011 at 2:05 PM, in message
>>> <[email protected]>, Josh Holtzman
>>> <[email protected]> wrote:
The reason the signature is invalid is because it's verifying a POST against an
http URL, but you're using https. This: POST&http%3A should be this:
POST&https%3A. Are you sure you're configuring the consumer correctly?
Josh
On Jul 14, 2011, at 3:05 AM, Lovemore Nalube wrote:
Hi Guys
Still I cannot find a solution to this error. The log for this error is:
2011-07-14 12:01:00 DEBUG (OAuthProviderProcessingFilter:109) - OAuth
parameters parsed: oauth_callback=about:blank
oauth_signature=bFCSJ/qzweJt0so7BPkhcm8UbW0= oauth_version=1.0
oauth_nonce=608647736334000 oauth_signature_method=HMAC-SHA1
oauth_consumer_key=consumerkey oauth_timestamp=1310637660
2011-07-14 12:01:00 DEBUG (OAuthSingleConsumerDetailsService:83) - Request
received to find consumer for consumerKey=[consumerkey]
2011-07-14 12:01:00 DEBUG (OAuthSingleConsumerDetailsService:88) - Result:
Found consumer [consumername]
2011-07-14 12:01:00 DEBUG (OAuthProviderProcessingFilter:120) - Consumer
details loaded for consumerkey:
org.springframework.security.oauth.provider.BaseConsumerDetails@79394aa
2011-07-14 12:01:00 DEBUG (OAuthProviderProcessingFilter:126) - Parameters
validated.
2011-07-14 12:01:00 DEBUG (OAuthProviderProcessingFilter:265) - Verifying
signature bFCSJ/qzweJt0so7BPkhcm8UbW0= for signature base string
POST&http%3A%2F%2Fmedia.uct.ac.za%......LTI-INFO
HERE........fa1-0f83-4ed5-89a2-4c70752a87bb with method HMAC-SHA1.
2011-07-14 12:01:00 DEBUG (LtiProcessingFilter:43) - Skip resetting the
authentication
2011-07-14 12:01:00 DEBUG (OAuthProviderProcessingFilter:364) -
org.springframework.security.oauth.common.signature.InvalidSignatureException:
Invalid signature for signature method HMAC-SHA1
Shall I file a bug report instead?
Thanks
--
Lovemore Nalube
OLE Developer (Vula)
University of Cape Town
http://www.cet.uct.ac.za/LovemoreN
>>> On 7/6/2011 at 10:09 AM, in message
>>> <[email protected]>, "Lovemore Nalube"
>>> <[email protected]> wrote:
Hi Guys
Just asking again if anyone can help with this. Am including the community list
just in case :)
Thanks
--
Lovemore Nalube
OLE Developer (Vula)
University of Cape Town
http://www.cet.uct.ac.za/LovemoreN
>>> On 7/4/2011 at 3:57 PM, in message
>>> <[email protected]>, "Lovemore Nalube"
>>> <[email protected]> wrote:
Hi Guys
I'm making a Sakai 2.x opencast distribution and admin UI using the LTI tool.
Pretty nifty tool it is - and it works great, until I shift to HTTPS. HTTP
works with no issues. I just added an SSL certificate to the opencast server
and when I go to the LTI tool in Sakai, I get this error:
HTTP ERROR 401
Problem accessing /lti. Reason:
Invalid signature for signature method HMAC-SHA1
Can anyone help? I suspect that the oauth credentials are not being decrypted
properly but cannot verify this.
Thanks
> LTI (or Oauth?) does not work via SSL
> -------------------------------------
>
> Key: MH-8028
> URL: http://opencast.jira.com/browse/MH-8028
> Project: Matterhorn Project
> Issue Type: Bug
> Components: Architecture & Services
> Affects Versions: 1.2
> Reporter: Lovemore Nalube
>
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
Matterhorn mailing list
[email protected]
http://lists.opencastproject.org/mailman/listinfo/matterhorn
To unsubscribe please email
[email protected]
_______________________________________________
