New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[sec-proxy] fix SNI support / upgrade to httpclient 4.3.2 ? #1313
Comments
Same issue with httpclient-4.3.3 & httpcore-4.3.2 copied from extractorapp webapp |
More contect for the traceback:
And the request on sdi.georchestra.org via curl to set the Referer:
|
I can confirm that it works fine now, in production on https://ids.craig.fr/, thanks @pmauduit . Only remaining issue is that to be really full-https, the services have to be tweaked/reconfigured to provide https urls too in the OnlineResource parts of the GetCapabilities document. Sigh, this https thing is a never ending horror. |
Similar to geonetwork/core-geonetwork#1368, our sec-proxy trips on an https server with SNI:
We use httpclient 4.2.1 in security-proxy, and if i replace the jar by httpclient 4.3.2 (which fixes/supports SNI) and httpcore-4.3.1 (the versions i have in geonetwork) it's still broken/fails to fetch the getcapabilities.
STR: on sdi.georchestra.org/mapfishapp, try to load https://wms.craig.fr/ortho
The text was updated successfully, but these errors were encountered: