SSL login redirect
I placed a bit of php on my login page to redirect using https:, however once a user is logged in, I want them to be redirected to a NON secure page. (http:)
A post in the interaktonline.com forum indicated you can enter full url's in the redirect fields of the email settings | user-levels tab
http://www.interaktonline.com/Products/Bundles/MXKollection/Product-Forum/Details/70652/Se cure+https+in+login.html
This doesn't work for me ... instead it redirects to (ignore spaces):
https://www.domain.com/http: //www.domain.com/
basically appending whatever you put in the redirect fields to the end of your hostname.
Is there a way around this? I don't want to have every page OTHER than my login check to see if it's https, and then redirect back ... that seems too messy.
Thanks!
~shawn
So after a couple of hours hunting, here's what I found:
In the file includes/tng/triggers/tNG_defTrigg.inc.php :
Line 233 tries to take care of the "relative/absolute" path decision:
$relPath = '';
if (isset($tNG->dispatcher) && isset($tNG->dispatcher->relPath)) {
$relPath = KT_makeIncludedURL($tNG->dispatcher->relPath);
(Actually this "decision" is made by KT_makeIncludedURL() in the /includes/common/KT_functions.inc.php file on line 475)
It turns out all of this depends on the dispatcher:
// Make a transaction dispatcher instance
$tNGs = new tNG_dispatcher("../");
If the dispatcher is relative, it will make the redirect relative. IF THE DISPATCHER IS ABSOLUTE, THE REDIRECTS WILL BE AS WELL.
Actually I didn't even need to change the paths in the login settings, I just changed the dispatcher to an absolute URL, like this:
// Make a transaction dispatcher instance
$tNGs = new tNG_dispatcher("http://www.domain.com/");
and everything's gravy!
Cheers!
PS, in case you're interested in the PHP to force SSL for a particular page, you can find it here: http://rackerhacker.com/2007/03/21/forcing-https-with-php/
Similar Messages
-
Login Redirection through SYSTEM application
Hi,
I'm using the standard SYSTEM application to perform the Login redirection. The redirection works fine in normal cases. However I face problems when I pass some parameters in my original URL.
Consider my app URL is: http://testsystem/sap/bc/bsp/sap/test/default.htm?bookid=1000 During login this gets redirected to url /sap/public/bsp/sap/system/login.htm?sap-url=<%=PATHTRANS%>
The login happens here, but after that, the parameter "bookid" got removed from the original URL.
Why does this happen?
Is this the standard system behaviour? Or am I missing something?
How else can I pass parameters to the URL while still retaining the login redirection through SYSTEM application?
Regards,
PradeepHi,
I'm successful passing parameters with the code mentioned in /people/eddy.declercq/blog/2005/11/15/enemy-of-the-state
Eddy -
Ok,
Before upgrading to leopard, I could access https://domain/exchange. It would ask for id and password and keychain(which really never worked but I was ok with it). Now with Leopard and Safari, i go to https://domain/exchange and the ssl login comes up i put in id and password and it asks again and again and again. No go. I tried domain\id and password no go. I open firefox and it works great.
So long story short, it works everywhere but safari now and I am stumped.
KevinTo find the answer to this question, I went to apple store and got an appointment with the "so called" Genius Bar. The person on the bar was a nice person but he had no solution to this. After 13 min he suggested that I install Safari 2.0. He then demonstrated on Tiger the HTTPS site of my company is working but on Leopard it did not.
The bad news is that Leopard does not allow Safari 2.0 to run on it.
I had been searching on the web and I found one post that said that Safari 3.0 HTTPS implementation is not complaint with W3C standards. I have no idea what that means except for the fact it does not work. -
WebMail [squirrelmail] login redirect problem
Hi, all -- I'm running into a recurring WebMail login redirect issue. When going to www.domain.xxx/WebMail, I have in the past gotten a directory listing, then needed to click on "index.php" to get to the login page. Then everything worked fine.
Now I get a "copy" of my main website's index page, only with "?" in place of all the graphics. It appears that the redirect (which never worked right in the first place...) is now even more bolluxed up.
I've checked already that port 16080 is enabled, so that shouldn't be the problem.
BTW, I am NOT a UNIX power-user, so please be VERY specific in both commands and syntax if I need to get into Terminal to fix the redirect. Thanks in advance!
G4 Mac OS X (10.3.9) OS X Server 10.4.8 on a 500MHz G4Hi, all -- I'm running into a recurring WebMail login
redirect issue. When going to
www.domain.xxx/WebMail, I have in the past gotten a
directory listing, then needed to click on
"index.php" to get to the login page. Then
everything worked fine.
If you want to fix this, make sure that:
1) Your document root (aka "Web Folder") is set properly for the "www.domain.xxx" site in "Server Admin > Web > Settings > Sites > www.domain.xxx > General."
2) In the same window, make sure "index.php" is listed as one of the default index files.
Now I get a "copy" of my main website's index page,
only with "?" in place of all the graphics. It
appears that the redirect (which never worked right
in the first place...) is now even more bolluxed up.
I've checked already that port 16080 is enabled, so
that shouldn't be the problem.
Port 16080 means you're using Performance Cache (under "Options"). If you don't need this, turn it off.
MacBook Pro Mac OS X (10.4.8) -
How can I set up SSL login authentication on one domain for multiple domains
Our site currently runs in 22 countries with 22 different
country domains:
www.mysite.com
www.mysite.co.uk
www.mysite.fr
etc
We want to use SSL on our login pages but realise that the
cost of certification for every domain is expensive. One solution
would be to channel all login activity to a single domain, eg:
www.mysite.com/login.cfm?site=fr which would then redirect to
www.mysite.fr – this is how Google do it
But, currently we are using encrypted cookies for login
authentication so we would have the problem of having to transfer
the cookie info across domains securely. Is there any way of going
about this?
Any other suggestions would be great, too. We do plan to move
to session management for logins but this is a longer term project
so we are hoping to sort out the SSL prior to that.Can you not pass the values you need as URL parameters?
Encrypt them befor you send them and then decrypt them on the new
domain. Then add them to whatever place you need (cookie, session,
etc.)? -
Force SSL and redirect to GW-WebAccess
GW 802 WebAccess Application, OES2 SP2
Hi everybody,
I used to apply the following code in gw.conf for redirection and use of SSL:
<IfModule !mod_rewrite.c>
LoadModule rewrite_module /usr/lib/apache2/mod_rewrite.so
</IfModule>
<IfModule mod_rewrite.c>
RewriteEngine on
Rewritecond %{SERVER_PORT} ^80$
RewriteRule ^/gw/(.*) https://%{HTTP_HOST}/gw/$1 [NC,R,L]
</IfModule>
Force SSL on GroupWise 8 WebAccess and Calendar Publishing | Novell User Communities
Connecting from outside everything works fine.
From inside users can still reach the OES Welcome Page by typing the server name in the browser.
Is there a way to configure so that users are always redirected to GW-WA login page, also from inside without getting the chance to come to the OES Welcome Page?
Any help/ideas appreciated.
Thanks, Holgerhschmolz,
It appears that in the past few days you have not received a response to your
posting. That concerns us, and has triggered this automated reply.
Has your problem been resolved? If not, you might try one of the following options:
- Visit http://support.novell.com and search the knowledgebase and/or check all
the other self support options and support programs available.
- You could also try posting your message again. Make sure it is posted in the
correct newsgroup. (http://forums.novell.com)
Be sure to read the forum FAQ about what to expect in the way of responses:
http://forums.novell.com/faq.php
If this is a reply to a duplicate posting, please ignore and accept our apologies
and rest assured we will issue a stern reprimand to our posting bot.
Good luck!
Your Novell Product Support Forums Team
http://forums.novell.com/ -
Problem with ASA 5505 SSL login
I have an ASA 5505 that is hosting a SSL VPN. The user can not login. They receive login error. To the best of their knowledge, this problem started after the office Domain Controller was rebuilt. I have looked on ASA and in AD and cannot seem to trace the issue. Any ideas?
David,
In order to understand why LDAP is not working run a "debug ldap 255" and then try to login or run a AAA test.
Attach the output to find out the issue.
Please check this out as well, to make sure that you have the correct settings:
ASA 8.0: Configure LDAP Authentication for WebVPN Users
HTH.
Portu. -
Hello,
I changed the page that the login button is supposed to go to. But it still goes to page 1.
Changed Login Process:
P_FLOW_PAGE => :APP_ID||':5'
Is there another location in the application that I need to change?
Thanks,
JessicaScott,
Actually it is when I logout of the application and then log back in it takes me to page number 1 when it is supposed to go to page number 5. That is why I went to the Login Page and changed the Login Process so that it would redirect to page 5 but it doesn't do so.
I also changed the Home Link Attribute. When I click on the run application icon that does go to page 5.
Jess -
Safari produces 404 with login & redirection script, Firefox, IE work fine
Hi!
I'm having a bit of trouble with a login script and I was wondering if there were any particular safari bugs I should be aware of?
The script is a php script that takes login details, redirects the user to an appropriate site based on the login details and logs them into that site automatically... In firefox and IE it works without issue... in safari I get a 404 page not found error...
The weirdest part is that the script is at:
www.site.com/script.php
the 404 not found error appears with:
www.site.com in the url bar, and if you press refresh the 404 error remains, even though the site can be found... it's really weird...
Any thoughts would be much appreciated...Okay... I've solved it!
Safari has a little bug/feature: if there is no action specified in a form(meaning the page that will receive the data is the same as the page containing the form) Safari misinterprets it and relocates to... null. I just hardcoded the target in the form and it... worked. -
Passing URL variable on login redirect
I first want to say thank you for all the great help I have received on these forums over the past couple months - it has been very helpful and saved me countless days.
Saying that, I do have another problem. I would like to pass a URL variable to the success redirect page when users login. I want to have a recordset on the login page that retrieves an issueid for the most current article and then passes it on the URL to the page that is loaded when a user successfully logins. I have tried adding the recordset to the login page and then changing the URL for the successful redirect on the tNG_config.inc.php file to:
$tNG_login_config_redirect_success["5"] = 'dashboard_issue.php?issueid=' . $currentIssueId . '';
but it isn't working. I have a tried as many variations of that syntax as I could think of or find searching online but still no luck. There might be a much easier way to do this but the way the dashboard_issue page is set up is that it is looking for the issueid in the url. The benefit being that the same page can be used for any issue that the user wants to change to once he is logged in.
I hope this is making some sense. If not please let me know.
Thanks!
-DanThe most current issue is actually just the one that is closest to today's date in the future. Users are free to add as many issues as they want in the past and future so I really can't go by issueid to sort since it might come in any order. Right now I have the most current issue found with this query:
SELECT issueid, DATE_FORMAT(date, '%W, %M %d, %Y') 'date' FROM issues WHERE date >= CURDATE() LIMIT 0,1
I will try to explain the problem a little more. This works great for what I need to do for this page as soon as they log in since it doesn't even look at the URL at all. If a user wants to go to a different issue I display a different page (which is this page just renamed) where the recordset looks at the URL issueid variable instead of the most recent issue recordset. The problem with this setup is that it is hard to maintain 2 pages all the time and would be great if I can just have one page to handle everything.
Is it possible to do something like this?:
IF issueid url variable EXISTS THEN use recordset1
IF issueid url variable DOES NOT EXISTS use recordset2
with recordset1 being the one that grabs the most current issue and recordset2 being the one that pulls the issue information based on the url issueid. -
DMM SuperUser URL :8080/dmsadmin/admin/login redirects and can't access
For some reason I can no longer access the superuser admin for the DMM. When we connected the DMM to LDAP we had to start using
http://SERVERADDRESS:8080/dmsadmin/admin/login
Where I go there it redirects to
https://SERVERADDRESS.com:8443/dmsadmin/login/loginView.jsp?goto=http%3A%2F%2FSERVERADDRESS.com%3A8080%2Fdmsadmin%2Fj_spring_dms_security_check
Any ideas?Do a search for the wdbsvr.app file and make sure there is a DAD entry for both the portal and login server and that they are correct.
-
Trouble with Login Redirect [$_SESSION['PrevUrl']
I'm using the DW functionality to confirm that a user is logged in before allowing access to a page. Everything works except successfully redirecting to the previous URL. Here's the situation:
User accesses a page with a url such as "addtocookbook.php?recipeid=6".
Since the user is not logged in, they are redirected to"login.php".
After successfully logging in, the user is redirected to "addtocookbook.php" without the "recipe=6".
My login page does attempt to direct the user to the previous url (if it exists). I'm not sure if there is a simple way to make the variable $_SESSION['PrevUrl'], used by DW to redirect, store the entire url.
Any help is appreciated.
Elie ChocronThe problem lies with some obsolete code in the Restrict access to page server behavior. Fortunately, the fix is quite simple.
The affected section of code is as follows:
if (!((isset($_SESSION['MM_Username'])) && (isAuthorized("",$MM_authorizedUsers, $_SESSION['MM_Username'], $_SESSION['MM_UserGroup'])))) {
$MM_qsChar = "?";
$MM_referrer = $_SERVER['PHP_SELF'];
if (strpos($MM_restrictGoTo, "?")) $MM_qsChar = "&";
if (isset($QUERY_STRING) && strlen($QUERY_STRING) > 0)
$MM_referrer .= "?" . $QUERY_STRING;
$MM_restrictGoTo = $MM_restrictGoTo. $MM_qsChar . "accesscheck=" . urlencode($MM_referrer);
header("Location: ". $MM_restrictGoTo);
exit;
All that is necessary is to replace the three instances of $QUERY_STRING like this:
if (!((isset($_SESSION['MM_Username'])) && (isAuthorized("",$MM_authorizedUsers, $_SESSION['MM_Username'], $_SESSION['MM_UserGroup'])))) {
$MM_qsChar = "?";
$MM_referrer = $_SERVER['PHP_SELF'];
if (strpos($MM_restrictGoTo, "?")) $MM_qsChar = "&";
if (isset($_SERVER['QUERY_STRING']) && strlen($_SERVER['QUERY_STRING']) > 0)
$MM_referrer .= "?" . $_SERVER['QUERY_STRING'];
$MM_restrictGoTo = $MM_restrictGoTo. $MM_qsChar . "accesscheck=" . urlencode($MM_referrer);
header("Location: ". $MM_restrictGoTo);
exit;
The redirect will then work correctly. -
Hi, I have a php login using Dreamwearver tools. The users
have access levels from "A" through "J" (to simplify things). When
a user logs in I want them to be directed to the appropriate page
according to their access level. For example, if the user's access
level is "F" they go to "f.php" . But because there are so many
access levels, redirecting down the line via the "restict access to
page dreamweaver function" , (as mentioned in other solutions on
this topic), is unpractical. Any suggestions?Use the switch statement to redirect the user depending on
their access
level eg
switch ($access_level){
case "A":
header("Location: www.mysite.com/a.php");
break;
case "B":
header("Location: www.mysite.com/b.php");
break;
case "C":
header("Location: www.mysite.com/c.php");
break;
Gareth
http://www.phploginsuite.co.uk/
PHP Login Suite V2 - 34 Server Behaviors to build a complete
Login system. -
Possible to reexecute BeforePhase methodbinding after login redirection?
ADF 11gR1 PS1
Hi.
I have a menu built dynamically (based on http://biemond.blogspot.com/2008/11/dynamic-menu-based-on-roles-database.html ), which calls a bean method to populate the menu. This method is called during the BeforePhase of a page.
By standard built-in security functionality, if the user is not authenticated, the user is redirected to a login page, and then brought back to the original page.
BUT, it turns out the BeforePhase event was already triggered prior to authentication, and isn't executed again. Therefore, the dynamic menu is not rebuilt showing the items for authenticated users.
Any way to execute a method in "a beforephase scope" after authentication?Your class should override onPageLoad() method for that you will need to implement PagePhaseListener. You can execute your method in onPageLoad().
-
IE alert after ssl login to calendar server
I have successfully setup SSL calendar server. When I login https://mycalendar.com using IE6, I got the alert message "Do you want to display nonsecure items" and all the gif buttons were missing.
I have tried other browser like mozilla and firefox and found no problem.
Any help would be appreciated.
BillThanks fo your help!
My settings are:
service.http.ssl.sourceurl "https://MYSERVERNAME:443"
ui.base.url = ""
ui.proxyaddress.url = ""
I have tried the following combination and still not work.
1)ui.base.url = "https://MYSERVERNAME"
ui.proxyaddress.url = ""
2) ui.base.url = ""
ui.proxyaddress.url = "https://MYSERVERNAME"
3)ui.base.url = "https://MYSERVERNAME"
ui.proxyaddress.url = "https://MYSERVERNAME"
I am wondering what could be going wrong.
Maybe you are looking for
-
Printing Multiple Letters on dunning wizard
Hi, I have created letter one for a customer who had an invoice o/s within 30 days and this then updated the BP master data as expected. I then changed my system date advancing 60 days and I expected letter two to be created but this customer didn't
-
Unable to create Oracle BAM Sinks in Design Studio on Windows XP Profession
Hi, I am unable to create any Oracle BAM Sink in Design Studio. I am getting this error, when trying to drag BAM Sink to my plan: Failed to create the Transform COM object. [Oracle BAM Enterprise Link error code: DC -- 0x1, DC -- 0x5B] Problem in st
-
Using a US iPad Mini in Sweden
I live in Sweden and am going to the US soon. While there I was hoping to buy and ipad mini. My question is if I buy one with cellular serivce can I use any swedish sim card I want with it? Also does it make a difference which US carrier I choose and
-
Invoke-CMReport cannot find the report server
I'm having trouble getting the invoke-cmreport commandlet to run properly. I know there are some challenges with the parameters, but I keep getting an error "Could not find a Reporting Services Point on site DV0 and server iodwdbs091.dev.#####.org".
-
In Preview, when I add text annotations to my PDF (lecture note slides), they look fine until I close it and reopen it, and then they are rotated 90 degrees. How do I fix this and keep it from happening again?