Test Server not connecting in 5.3.2

Post any questions regarding Installing or Upgrading Ebase, including problems starting up the Ebase Xi Server or Designer

Moderators: Jon, Steve, Ian, Dave

Segi
Ebase User
Posts: 649
Joined: Mon Dec 09, 2013 6:37 pm

Test Server not connecting in 5.3.2

#1

Postby Segi » Fri Mar 02, 2018 6:06 pm

After upgrading my server to 5.3.2, Verj IO Studio on my desktop, which is my development environment, won't connect to my server using the external server as the test server which means that I can't select a DB connection and cannot deploy.

I am using the same parameters that I did previously on 5.2 for the test server:

Host name: SERVER name
Port: 80
Web application name: ufs

My server runs on port 443

I think it's probably related to the fact that since I upgraded, I've noticed that when accessing http://servername.ourdomain.com, Tomcat doesn't redirect to https anymore even though it used to before the upgrade.

My context.xml looks like this:

Code: Select all

<Context useHttpOnly="true">
    <WatchedResource>WEB-INF/web.xml</WatchedResource>
    <WatchedResource>${catalina.base}/conf/web.xml</WatchedResource>
</Context>
useHttpOnly="true" is supposed to force Tomcat to only use https.

server.xml connectors

Code: Select all

 <Connector port="443" protocol="org.apache.coyote.http11.Http11Protocol" maxHttpHeaderSize="8192" SSLEnabled="true" maxThreads="150" minSpareThreads="25" 
    enableLookups="true" disableUploadTimeout="true" acceptCount="100" scheme="https" secure="true" clientAuth="false"  keystoreFile="C:\ebaseXi532\tomcat.keystore" keystorePass="mypasswordgoeshere" />
    
<Connector port="80" protocol="HTTP/1.1"
     connectionTimeout="20000"
     redirectPort="443" />
0 x

Jon
Moderator
Moderator
Posts: 1342
Joined: Wed Sep 12, 2007 12:49 pm

Re: Test Server not connecting in 5.3.2

#2

Postby Jon » Mon Mar 05, 2018 12:42 pm

I'm nor sure that's what useHttpOnly does - according to the doc it's to stop Javascript access to session cookies. What happens if you try to access your system from a browser using servername/ufs - you should see the documentation page. Do you have any errors on your server logs?
0 x

Segi
Ebase User
Posts: 649
Joined: Mon Dec 09, 2013 6:37 pm

Re: Test Server not connecting in 5.3.2

#3

Postby Segi » Mon Mar 05, 2018 3:53 pm

Jon,

If I try to access http://servername.com/ufs the page times out. The problem is that the server doesn't redirect http connections to https so I'm getting a browser error. Trying to visit the same URL using https works fine.

This problem only started after upgrading to 5.3.2

Is the redirection determined by how you set up the connector ports in server.xml ?
0 x

Jon
Moderator
Moderator
Posts: 1342
Joined: Wed Sep 12, 2007 12:49 pm

Re: Test Server not connecting in 5.3.2

#4

Postby Jon » Mon Mar 05, 2018 5:04 pm

I think you have to add a security constraint to conf/web.xml - that's what everyone seems to be quoting if you google this - is it possible you had this configured on your V5.2 system. Plus you have to configure your connectors for HTTPS. Another way is to use a front-end web listener to do this e.g. IIS, Apache, NGINX etc.
0 x

Segi
Ebase User
Posts: 649
Joined: Mon Dec 09, 2013 6:37 pm

Re: Test Server not connecting in 5.3.2

#5

Postby Segi » Mon Mar 05, 2018 6:03 pm

Jon,

i did find that same information on the web regarding Tomcat. I recently added this at the end of web.xml before </web-app to try and fix the problem. It wasn't there on the working 5.2 instance:

As you can see above, I did configure a https connector in server.xml and also have a redirect for port 80 to 443 redirect connector in server.xml as well.

Code: Select all

    <security-constraint>
</web-app>
    <web-resource-collection>
        <web-resource-name>Secured</web-resource-name>
        <url-pattern>/*</url-pattern>
    </web-resource-collection>

    ...

    <user-data-constraint>
        <transport-guarantee>CONFIDENTIAL</transport-guarantee>
    </user-data-constraint>

</security-constraint>
but it doesn't redirect.

I have another Ebase instance that doesn't have this <security-constraint>in web.xml but it does redirect http://epc.ourdomain.com to https://epc.ourdomain.com. I've just done a simple test though and noticed that http://epc.ourdomain.com/ufs/LOGIN.eb does NOT redirect properly and gives a web error "The page isn't redirecting properly"

Wouldn't this mean that the working redirect is configured in the ROOT webapp ?
0 x

Jon
Moderator
Moderator
Posts: 1342
Joined: Wed Sep 12, 2007 12:49 pm

Re: Test Server not connecting in 5.3.2

#6

Postby Jon » Tue Mar 06, 2018 9:33 am

Yes I think so - in the previous post I meant the web.xml in UfsServer/tomcat/conf, not the one in the ebase webapp - just to be sure we're talking about the same thing. But I'm afraid I'm not an expert on this - I'm just relaying what I can see on google.

General info: for our own systems at Ebase, we have recently tended to use Nginx as a separate front-end and then use this to redirect http to https, and also to configure https and default forms etc. The basic reason is that it gives you better control than Tomcat. So you might be interested in taking a look at this - I think it's pretty easy to get started with it, but like anything it needs some time before you become familiar with it.
0 x

Segi
Ebase User
Posts: 649
Joined: Mon Dec 09, 2013 6:37 pm

Re: Test Server not connecting in 5.3.2

#7

Postby Segi » Tue Mar 06, 2018 3:50 pm

Jon,

Thanks. I was trying to avoid setting up a separate web server but I will have to do this. I am familiar with both Apache and Nginx as I use them on my personal server.

I will try that out

thanks

Segi
0 x

Segi
Ebase User
Posts: 649
Joined: Mon Dec 09, 2013 6:37 pm

Re: Test Server not connecting in 5.3.2

#8

Postby Segi » Tue Mar 06, 2018 6:50 pm

Jon,

I set up Apache and configured a redirect so that when I visit http://oursite.ourdomain.com in a browser now, it does properly redirect to https://oursite.ourdomain.com.

I'm still having a problem though with my original issue regarding the test server in designer on my local workstation. It's not connecting to the server using the parameters:

External Server
Host: intranet
Port: 80
Web application name: ufs

Because of this issue, I cannot select any database connections in Designer.

When I try to select a DB Connection in a DB resource, I'm getting the error:

"I/O error contacting server on http://intranet:80/ufs/designer - check that the start designer parameters are set correctly". When I click on OK it shows Dynamic as a DB connection option but nothing else.
0 x


Who is online

Users browsing this forum: No registered users and 9 guests