Web connector login sequence

Fri, 29 May 2020 09:02:13 -0700 

Hi MCF community,

 

I need some help with the configuration of a login sequence with the Web
connector. Here is the login sequence on a web browser :

 

GET site/

302 -> site/login

302 -> other-site/cas/login

401 other-site/cas/login

POST other-site/cas/login (set cookie)

302 -> site/login?param1=value (set cookie)

302 -> site/login?param1=value (set cookie)

302 -> site/

 

I tested the following conf :

 

Session: site

              site\/login = redirect

                other-site\/cas\/login = redirect

              other-site\/cas\/login = form 

                                              username=john

                                               password=***

 

This configuration works till the form POST, after the form POST, the first
cookie is correctly retrieved by the job but then it ends up in an infinite
loop. Here are the debug logs:

 

..

DEBUG 2020-05-29T15:07:25,560 (Worker thread '11') -
MCF|MCF-agent|apache.manifoldcf.connectors|WEB: For
https://other-site/cas/login, setting virtual host to other-site

DEBUG 2020-05-29T15:07:25,560 (Worker thread '11') -
MCF|MCF-agent|apache.manifoldcf.connectors|WEB: Got an HttpClient object
after 1 ms.

DEBUG 2020-05-29T15:07:25,560 (Worker thread '11') -
MCF|MCF-agent|apache.manifoldcf.connectors|WEB: Post method for '/cas/login'


...

DEBUG 2020-05-29T15:07:18,442 (Worker thread '11') -
MCF|MCF-agent|apache.manifoldcf.connectors|WEB: Retrieving cookies...

DEBUG 2020-05-29T15:07:18,442 (Worker thread '11') -
MCF|MCF-agent|apache.manifoldcf.connectors|WEB:   Cookie '[version:
0]xxxxxxxxxx

INFO 2020-05-29T15:07:18,448 (Worker thread '11') -
MCF|MCF-agent|apache.manifoldcf.connectors|WEB: FETCH
LOGIN|https://other-site/cas/login|1590764838416+31|302|0|

DEBUG 2020-05-29T15:07:18,448 (Worker thread '11') -
MCF|MCF-agent|apache.manifoldcf.connectors|WEB: Document
'https://other-site/cas/login' did not match expected form, link,
redirection, or content for sequence 'site'

..

 

It seems that the redirection after the form POST is not considered by the
job but I don't know why. After that, there is an infinite loop where the
cookie is passed on the GET "site/login" which redirects to
"other-site/login", but this time, when "other-site/login" get the cookie in
the request, it does not send a 302 redirect response code but a 200 OK

 

I don't know why there is such behavior and I would be glad to have your
advises !

 

Thanks for your help

 

Julien

Reply via email to