Am 22.08.2014 um 19:24 schrieb Stefan Arentz: > > Yeah I also ran into that while debugging. There is a bug in the hawk > library where it is supposed to fill in a reason of the invalid id. > But it doesn’t. > > I still think this is a HTTPS vs HTTP issue. > > Can you try this experiment: run your server purely on HTTP and see if > it works? Just get rid of all HTTPS endpoints. > > S. > OK, I tried HTTP.
With HTTP I see "token.assertion.audience_mismatch_error" and "token.assertion.verify_failure" in the error log of Apache. But, I found also within the error log of Apache, that the "remoteAddressChain" of HTTP is different from that of HTTPS. With HTTP I see my local IP address of my PC and the IP address of my DSL link. With HTTPS I only see the IP address of the DSL link. The local IP address is missing. Why? I guess that the proxy headers are not interpreted from Syncserver. But I know from debugging other applications, the proxy headers are there. How can we debug which headers are seen from Syncserver? That is good progress. Uwe
_______________________________________________ Sync-dev mailing list [email protected] https://mail.mozilla.org/listinfo/sync-dev
