Forum OpenACS Q&A: Re: Problems with https login

Collapse
Posted by Torben Brosten on
Richard,

Are you using the config.tcl file that comes with 5.4?

I believe the https configuration changed significantly between early oacs 5.1 and subsequent versions. Also, note that the register redirect for 5.4 may not work (especially according to ecommerce workflow). Look at these changes on head to fix:

http://cvs.openacs.org/cvs/openacs-4/packages/acs-tcl/tcl/security-procs.tcl?r1=1.46.2.2&r2=1.52&sortby=date
http://cvs.openacs.org/cvs/openacs-4/packages/acs-tcl/tcl/utilities-procs.tcl?r1=1.111&r2=1.112&sortby=date

cheers,

Torben

Collapse
Posted by Richard Hamilton on
Torben,

Thank you very much for posting that. The first link you posted includes code that does what my successful alteration to security::get_https_port does and is obviously a fully worked through solution - which is great. Am I correct in understanding that this code is newer than 5.4.3 because the core checkout I have is 5.4.3?

To answer your question, I use nsopenssl v 3.x and have my own nsd.tcl file that I have developed over a long period. I use a standard nsopenssl 3.x structure which is covered in the code that you posted a link to.

I guess I shouldco HEAD for security-procs.tcl and utilities-procs.tcl at a minimum and see if it works.

As far as security::get_https_port is concerned, I wonder how that has been left? In 5.4.3 that function is not nsopenssl v3.x compatible. I imagine that this new code supercedes its use in redirects and so, I wonder, is it still used, is it to be deprecated or should it also be updated so that it is at least compatible?

R.