<div dir="ltr">Mmm, that's quite strange, currently I cannot understand which is exactly the issue from your logs.<div><br></div><div>1. Let's start from the beginning, which version of GeoNode / GeoServer are you installing exactly?</div><div><br></div><div>2. Also, how did you installed GeoNode? By using ppa or git? In the second case, can you go through the steps listed here <a href="http://docs.geonode.org/en/latest/tutorials/install_and_admin/quick_install.html">http://docs.geonode.org/en/latest/tutorials/install_and_admin/quick_install.html</a> just *before* executing the *paver start* command?</div><div><br></div><div>3. How did you started GeoServer and GeoNode? Are you using Jetty / Tomcat? Apache HTTPD / NGINX or paver?</div><div><br></div><div>If needed we might schedule a quick chat here <a href="https://gitter.im/GeoNode/general">https://gitter.im/GeoNode/general</a> in order to try to go through the installation steps together.</div><div><br></div></div><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><div style="font-size:12.8px">Best Regards,</div><div style="font-size:12.8px">Alessio Fabiani.</div><div style="font-size:12.8px"><br></div><div style="font-size:12.8px"><div>==</div><div>GeoServer Professional Services from the experts!</div><div>Visit <a href="http://goo.gl/it488V" target="_blank">http://goo.gl/it488V</a> for more information.</div><div>==</div></div><div style="font-size:12.8px"><br></div><div style="font-size:12.8px">Ing. Alessio Fabiani</div><div style="font-size:12.8px">@alfa7691</div><div style="font-size:12.8px"><a href="https://github.com/afabiani?tab=overview" style="font-size:12.8px" target="_blank">github</a><br></div><div style="font-size:12.8px">Founder/Technical Lead</div><div style="font-size:12.8px"><br></div><div style="font-size:12.8px"><div>GeoSolutions S.A.S.</div><div>Via di Montramito 3/A</div><div>55054 Massarosa (LU)</div><div>Italy</div><div>phone: +39 0584 962313</div><div>fax: +39 0584 1660272</div><div>mob: +39 <span style="font-size:12.8px">331 6233686</span></div><div><br></div><div><a href="http://www.geo-solutions.it/" target="_blank">http://www.geo-solutions.it</a></div><div><a href="http://twitter.com/geosolutions_it" target="_blank">http://twitter.com/geosolutions_it</a></div></div><div style="font-size:12.8px"><br></div><div style="font-size:12.8px">-------------------------------------------------------</div><div style="font-size:12.8px"><br></div><div style="font-size:12.8px"><p><span lang="IT"><font size="1"><b>AVVERTENZE AI SENSI DEL D.Lgs. 196/2003</b></font></span></p><p><span lang="IT"><font size="1">Le informazioni contenute in questo messaggio di posta elettronica e/o nel/i file/s allegato/i sono da considerarsi strettamente riservate. Il loro utilizzo è consentito esclusivamente al destinatario del messaggio, per le finalità indicate nel messaggio stesso. Qualora riceviate questo messaggio senza esserne il destinatario, Vi preghiamo cortesemente di darcene notizia via e-mail e di procedere alla distruzione del messaggio stesso, cancellandolo dal Vostro sistema. Conservare il messaggio stesso, divulgarlo anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo per finalità diverse, costituisce comportamento contrario ai principi dettati dal D.Lgs. 196/2003.</font></span></p><p><span lang="IT"><font size="1"> </font></span></p><p><font size="1">The information in this message and/or attachments, is intended solely for the attention and use of the named addressee(s) and may be confidential or proprietary in nature or covered by the provisions of privacy act (Legislative Decree June, 30 2003, no.196 - Italy's New Data Protection Code).Any use not in accord with its purpose, any disclosure, reproduction, copying, distribution, or either dissemination, either whole or partial, is strictly forbidden except previous formal approval of the named addressee(s). If you are not the intended recipient, please contact immediately the sender by telephone, fax or e-mail and delete the information in this message that has been received in error. The sender does not give any warranty or accept liability as the content, accuracy or completeness of sent messages and accepts no responsibility for changes made after they were sent or for other risks which arise as a result of e-mail transmission, viruses, etc.</font></p><p><font size="1">---------------------------------------------------------------------</font></p></div></div></div></div>
<br><div class="gmail_quote">On Tue, Apr 18, 2017 at 3:51 PM, Eric Goddard <span dir="ltr"><<a href="mailto:egoddard1010@gmail.com" target="_blank">egoddard1010@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Hi Alessio,<br>
<br>
Thanks again for the response.<br>
<br>
I'm installing geonode on a fresh ubuntu 16.04 vm, so I don't have an<br>
old configuration. I worked through the geonode security guide,<br>
everything in my environment matched except the following:<br>
<br>
Django OAuth Toolkit Applications<br>
- Did not contain <a href="http://localhost:8080/geoserver" rel="noreferrer" target="_blank">http://localhost:8080/<wbr>geoserver</a> entries; added<br>
those above the public urls<br>
- Skip authorization was checked; unchecked it<br>
<br>
Geonode security settings:<br>
- Active Role service was default, changed to geonode REST service<br>
<br>
Geonode geofence Admin rules:<br>
- Rules existed for User and admin; deleted those rules<br>
<br>
<br>
After making those changes i tried uploading a layer, which still results in:<br>
<span class="">Tried to make a GET request to<br>
</span><a href="https://geoportal.memphis.edu/geoserver/rest/workspaces/default.xml" rel="noreferrer" target="_blank">https://geoportal.memphis.edu/<wbr>geoserver/rest/workspaces/<wbr>default.xml</a><br>
<span class="">but got a 404 status code:<br>
<br>
</span>using curl with the geoserver admin account also results in a 404:<br>
curl -v -u admin:**** <a href="http://localhost:8080/geoserver/rest/workspaces" rel="noreferrer" target="_blank">http://localhost:8080/<wbr>geoserver/rest/workspaces</a><br>
results in :<br>
* Trying ::1...<br>
* Connected to localhost (::1) port 8080 (#0)<br>
* Server auth using Basic with user 'admin'<br>
> GET /geoserver/rest/workspaces HTTP/1.1<br>
> Host: localhost:8080<br>
> Authorization: Basic<br>
> User-Agent: curl/7.47.0<br>
> Accept: */*<br>
><br>
< HTTP/1.1 404 Not Found<br>
< Set-Cookie: JSESSIONID=<wbr>59351DCBB625DAACFF50D69598123B<wbr>A7;<br>
Path=/geoserver/; HttpOnly<br>
< Date: Tue, 18 Apr 2017 13:33:45 GMT<br>
< Server: Noelios-Restlet-Engine/1.0..8<br>
< Transfer-Encoding: chunked<br>
<br>
using the public url also results in a 404. The geoserver log after<br>
making the curl request contains:<br>
<br>
2017-04-18 08:48:01,220 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/web/**'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/gwc/rest/web/**'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/j_spring_security_check'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/j_spring_security_check/'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/j_spring_oauth2_geonode_<wbr>login'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/j_spring_oauth2_geonode_<wbr>login/'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/j_spring_security_logout'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/j_spring_security_logout/'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/j_spring_oauth2_geonode_<wbr>logout'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/j_spring_oauth2_geonode_<wbr>logout/'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path: /rest/workspaces/default.xml,<br>
QueryString: null'; against '/rest/**'<br>
2017-04-18 08:48:01,221 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Matched Path: /rest/workspaces/default.xml, QueryString: null with<br>
/rest/**<br>
2017-04-18 08:48:01,221 DEBUG [org.geoserver.security] -<br>
AuthenticationCache found an entry for basic,<br>
admin:<wbr>20360581bd15fb4891bb083c8e2a69<wbr>a0<br>
2017-04-18 08:48:01,250 DEBUG [org.geoserver.security] - Inspecting<br>
<span class="">the http request looking for the GeoNode Session ID.<br>
</span>2017-04-18 08:48:01,250 DEBUG [org.geoserver.security] - Found no cookies!<br>
2017-04-18 08:48:01,250 DEBUG<br>
[org.geoserver.security.<wbr>RESTfulPathBasedFilterInvocati<wbr>onDefinitionMap]<br>
- Converted URL to lowercase, from: '/rest/workspaces/default.xml'<wbr>;<br>
to: '/rest/workspaces/default.xml' and httpMethod= GET<br>
2017-04-18 08:48:01,250 DEBUG<br>
[org.geoserver.security.<wbr>RESTfulPathBasedFilterInvocati<wbr>onDefinitionMap]<br>
- ~~~~~~~~~~ antPath= /rest/process/batchdownload/<wbr>download/*<br>
methodList= [GET]<br>
2017-04-18 08:48:01,250 DEBUG<br>
[org.geoserver.security.<wbr>RESTfulPathBasedFilterInvocati<wbr>onDefinitionMap]<br>
- Candidate is: '/rest/workspaces/default.xml'<wbr>; antPath is<br>
/rest/process/batchdownload/<wbr>download/*; matchedPath=false;<br>
matchedMethods=true<br>
2017-04-18 08:48:01,250 DEBUG<br>
[org.geoserver.security.<wbr>RESTfulPathBasedFilterInvocati<wbr>onDefinitionMap]<br>
- ~~~~~~~~~~ antPath= /rest/printing/* methodList= [GET, POST]<br>
2017-04-18 08:48:01,250 DEBUG<br>
[org.geoserver.security.<wbr>RESTfulPathBasedFilterInvocati<wbr>onDefinitionMap]<br>
- Candidate is: '/rest/workspaces/default.xml'<wbr>; antPath is<br>
/rest/printing/*; matchedPath=false; matchedMethods=true<br>
2017-04-18 08:48:01,250 DEBUG<br>
[org.geoserver.security.<wbr>RESTfulPathBasedFilterInvocati<wbr>onDefinitionMap]<br>
- ~~~~~~~~~~ antPath= /** methodList= [GET]<br>
2017-04-18 08:48:01,250 DEBUG<br>
[org.geoserver.security.<wbr>RESTfulPathBasedFilterInvocati<wbr>onDefinitionMap]<br>
- Candidate is: '/rest/workspaces/default.xml'<wbr>; antPath is /**;<br>
matchedPath=true; matchedMethods=true<br>
2017-04-18 08:48:01,250 DEBUG<br>
[org.geoserver.security.<wbr>RESTfulPathBasedFilterInvocati<wbr>onDefinitionMap]<br>
- returning IS_AUTHENTICATED_ANONYMOUSLY<br>
2017-04-18 08:48:01,251 TRACE [org.geoserver.ows.<wbr>OWSHandlerMapping] -<br>
No handler mapping found for [/rest/workspaces/default.xml]<br>
2017-04-18 08:48:01,253 DEBUG<br>
<span class="">[org.geoserver.security.<wbr>filter.<wbr>GeoServerSecurityContextPersis<wbr>tenceFilter$1]<br>
- SecurityContextHolder now cleared, as request processing completed<br>
</span>2017-04-18 08:48:06,724 DEBUG<br>
<span class="">[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Checking match of request : 'Path:<br>
</span>/web/wicket/bookmarkable/org.<wbr>geoserver.web.admin.logpage, QueryString:<br>
53&lines=1000'; against '/web/**'<br>
2017-04-18 08:48:06,725 DEBUG<br>
[org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
Matched Path: /web/wicket/bookmarkable/org.<wbr>geoserver.web.admin.logpage,<br>
QueryString: 53&lines=1000 with /web/**<br>
2017-04-18 08:48:06,725 DEBUG [org.geoserver.security] - Inspecting<br>
<span class="">the http request looking for the GeoNode Session ID.<br>
</span>2017-04-18 08:48:06,725 DEBUG [org.geoserver.security] - Found 6 cookies!<br>
2017-04-18 08:48:06,725 DEBUG [org.geoserver.security] - Found GeoNode<br>
cookie: of0qsjhpb2ymio0ejfxcky0ace0vgh<wbr>z3<br>
2017-04-18 08:48:06,728 TRACE [org.geoserver.ows.<wbr>OWSHandlerMapping] -<br>
<span class="">No handler mapping found for<br>
</span>[/web/wicket/bookmarkable/org.<wbr>geoserver.web.admin.LogPage]<br>
2017-04-18 08:48:06,729 DEBUG [org.geoserver] - Thread 63 locking in mode WRITE<br>
2017-04-18 08:48:06,730 DEBUG [org.geoserver] - Thread 63 got the lock<br>
in mode WRITE<br>
<br>
<br>
Looking at the upload directory, I can see that the files are uploaded.<br>
<br>
<br>
On Tue, Apr 18, 2017 at 3:33 AM, Alessio Fabiani<br>
<div class="HOEnZb"><div class="h5"><<a href="mailto:alessio.fabiani@geo-solutions.it">alessio.fabiani@geo-<wbr>solutions.it</a>> wrote:<br>
> Hello Eric,<br>
><br>
> the REST endpoints should be protected by default and accessible only<br>
> through internal GeoServer admin user (which is different from GeoNode one;<br>
> you can find it's credentials inside the "local_settings.py")<br>
><br>
> e.g. using CURL you would need to query the REST endpoints as curl -u<br>
> admin:***** ...<br>
><br>
> The other errors are quite strange and currently I cannot say the cause<br>
> without further details.<br>
><br>
> If you started from an old GeoServer DATA DIR (2.7 maybe) you might need to<br>
> do some changes manually in order to fix some issues with the Authentication<br>
> Providers.<br>
><br>
> Please, read carefully this guide<br>
><br>
> <a href="http://docs.geonode.org/en/latest/tutorials/admin/geoserver_geonode_security/index.html" rel="noreferrer" target="_blank">http://docs.geonode.org/en/<wbr>latest/tutorials/admin/<wbr>geoserver_geonode_security/<wbr>index.html</a><br>
><br>
> which explains in details how GeoNode and GeoServer security interacts and<br>
> how should be correctly configured.<br>
><br>
> Let me know if you still have issues and, in that case, let's try to<br>
> throubleshoot them somehow.<br>
><br>
><br>
><br>
><br>
><br>
><br>
> Best Regards,<br>
> Alessio Fabiani.<br>
><br>
> ==<br>
> GeoServer Professional Services from the experts!<br>
> Visit <a href="http://goo.gl/it488V" rel="noreferrer" target="_blank">http://goo.gl/it488V</a> for more information.<br>
> ==<br>
><br>
> Ing. Alessio Fabiani<br>
> @alfa7691<br>
> github<br>
> Founder/Technical Lead<br>
><br>
> GeoSolutions S.A.S.<br>
> Via di Montramito 3/A<br>
> 55054 Massarosa (LU)<br>
> Italy<br>
> phone: <a href="tel:%2B39%200584%20962313" value="+390584962313">+39 0584 962313</a><br>
> fax: <a href="tel:%2B39%200584%201660272" value="+3905841660272">+39 0584 1660272</a><br>
> mob: <a href="tel:%2B39%20331%206233686" value="+393316233686">+39 331 6233686</a><br>
><br>
> <a href="http://www.geo-solutions.it" rel="noreferrer" target="_blank">http://www.geo-solutions.it</a><br>
> <a href="http://twitter.com/geosolutions_it" rel="noreferrer" target="_blank">http://twitter.com/<wbr>geosolutions_it</a><br>
><br>
> ------------------------------<wbr>-------------------------<br>
><br>
> AVVERTENZE AI SENSI DEL D.Lgs. 196/2003<br>
><br>
> Le informazioni contenute in questo messaggio di posta elettronica e/o nel/i<br>
> file/s allegato/i sono da considerarsi strettamente riservate. Il loro<br>
> utilizzo è consentito esclusivamente al destinatario del messaggio, per le<br>
> finalità indicate nel messaggio stesso. Qualora riceviate questo messaggio<br>
> senza esserne il destinatario, Vi preghiamo cortesemente di darcene notizia<br>
> via e-mail e di procedere alla distruzione del messaggio stesso,<br>
> cancellandolo dal Vostro sistema. Conservare il messaggio stesso, divulgarlo<br>
> anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo per<br>
> finalità diverse, costituisce comportamento contrario ai principi dettati<br>
> dal D.Lgs. 196/2003.<br>
><br>
><br>
><br>
> The information in this message and/or attachments, is intended solely for<br>
> the attention and use of the named addressee(s) and may be confidential or<br>
> proprietary in nature or covered by the provisions of privacy act<br>
> (Legislative Decree June, 30 2003, no.196 - Italy's New Data Protection<br>
> Code).Any use not in accord with its purpose, any disclosure, reproduction,<br>
> copying, distribution, or either dissemination, either whole or partial, is<br>
> strictly forbidden except previous formal approval of the named<br>
> addressee(s). If you are not the intended recipient, please contact<br>
> immediately the sender by telephone, fax or e-mail and delete the<br>
> information in this message that has been received in error. The sender does<br>
> not give any warranty or accept liability as the content, accuracy or<br>
> completeness of sent messages and accepts no responsibility for changes<br>
> made after they were sent or for other risks which arise as a result of<br>
> e-mail transmission, viruses, etc.<br>
><br>
> ------------------------------<wbr>------------------------------<wbr>---------<br>
><br>
><br>
> On Fri, Apr 14, 2017 at 9:13 PM, Eric Goddard <<a href="mailto:egoddard1010@gmail.com">egoddard1010@gmail.com</a>><br>
> wrote:<br>
>><br>
>> Thanks Alessio, using the geonode button does work now. I missed that<br>
>> addition and was expecting it to work the same as in 2.4.<br>
>><br>
>> I can authenticate with Geoserver now, however when trying to upload a<br>
>> layer through geonode it throws an error:<br>
>><br>
>> (actual url replaced since it isn't ready yet)<br>
>><br>
>> Tried to make a GET request to<br>
>> <a href="https://geonode.example.com/geoserver/rest/workspaces/default.xml" rel="noreferrer" target="_blank">https://geonode.example.com/<wbr>geoserver/rest/workspaces/<wbr>default.xml</a> but<br>
>> got a 404 status code:<br>
>><br>
>> trying to access the rest endpoints directly gives an error message,<br>
>> both over http and https so I don't think it is from the nginx/lets<br>
>> encrypt config. However, When I'm in the geoserver admin,<br>
>> clicking on any of the sidebar links such as Geoserver logs adds an<br>
>> extra https// in the link: Even though hovering over the link displays<br>
>> the correct link in the browser status bar, when you click on it I get<br>
>><br>
>> <a href="https://https//geonode.example.com/geoserver/web/wicket/bookmarkable/org.geoserver.web.admin.StatusPage?8" rel="noreferrer" target="_blank">https://https//geonode.<wbr>example.com/geoserver/web/<wbr>wicket/bookmarkable/org.<wbr>geoserver.web.admin.<wbr>StatusPage?8</a><br>
>><br>
>> Thanks again,<br>
>> Eric<br>
>><br>
>> On Fri, Apr 14, 2017 at 4:01 AM, Alessio Fabiani<br>
>> <<a href="mailto:alessio.fabiani@geo-solutions.it">alessio.fabiani@geo-<wbr>solutions.it</a>> wrote:<br>
>> > It is normal.<br>
>> ><br>
>> > If you are using OAtuh2, the GeoServer Admin GUI won't be automatically<br>
>> > logged. You need to authenticate through geonode icon or geoserver<br>
>> > credentials.<br>
>> ><br>
>> > This is different for access to the layers. GeoNode generates an<br>
>> > authentication token which is used to keep authentication.<br>
>> ><br>
>> > Alternatively you can get this token from session and use it to be<br>
>> > automatically authetnicated on GeoServer Admin GUI too.<br>
>> ><br>
>> ><br>
>> > Best Regards,<br>
>> > Alessio Fabiani.<br>
>> ><br>
>> > ==<br>
>> > GeoServer Professional Services from the experts!<br>
>> > Visit <a href="http://goo.gl/it488V" rel="noreferrer" target="_blank">http://goo.gl/it488V</a> for more information.<br>
>> > ==<br>
>> ><br>
>> > Ing. Alessio Fabiani<br>
>> > @alfa7691<br>
>> > github<br>
>> > Founder/Technical Lead<br>
>> ><br>
>> > GeoSolutions S.A.S.<br>
>> > Via di Montramito 3/A<br>
>> > 55054 Massarosa (LU)<br>
>> > Italy<br>
>> > phone: <a href="tel:%2B39%200584%20962313" value="+390584962313">+39 0584 962313</a><br>
>> > fax: <a href="tel:%2B39%200584%201660272" value="+3905841660272">+39 0584 1660272</a><br>
>> > mob: <a href="tel:%2B39%20331%206233686" value="+393316233686">+39 331 6233686</a><br>
>> ><br>
>> > <a href="http://www.geo-solutions.it" rel="noreferrer" target="_blank">http://www.geo-solutions.it</a><br>
>> > <a href="http://twitter.com/geosolutions_it" rel="noreferrer" target="_blank">http://twitter.com/<wbr>geosolutions_it</a><br>
>> ><br>
>> > ------------------------------<wbr>-------------------------<br>
>> ><br>
>> > AVVERTENZE AI SENSI DEL D.Lgs. 196/2003<br>
>> ><br>
>> > Le informazioni contenute in questo messaggio di posta elettronica e/o<br>
>> > nel/i<br>
>> > file/s allegato/i sono da considerarsi strettamente riservate. Il loro<br>
>> > utilizzo è consentito esclusivamente al destinatario del messaggio, per<br>
>> > le<br>
>> > finalità indicate nel messaggio stesso. Qualora riceviate questo<br>
>> > messaggio<br>
>> > senza esserne il destinatario, Vi preghiamo cortesemente di darcene<br>
>> > notizia<br>
>> > via e-mail e di procedere alla distruzione del messaggio stesso,<br>
>> > cancellandolo dal Vostro sistema. Conservare il messaggio stesso,<br>
>> > divulgarlo<br>
>> > anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo<br>
>> > per<br>
>> > finalità diverse, costituisce comportamento contrario ai principi<br>
>> > dettati<br>
>> > dal D.Lgs. 196/2003.<br>
>> ><br>
>> ><br>
>> ><br>
>> > The information in this message and/or attachments, is intended solely<br>
>> > for<br>
>> > the attention and use of the named addressee(s) and may be confidential<br>
>> > or<br>
>> > proprietary in nature or covered by the provisions of privacy act<br>
>> > (Legislative Decree June, 30 2003, no.196 - Italy's New Data Protection<br>
>> > Code).Any use not in accord with its purpose, any disclosure,<br>
>> > reproduction,<br>
>> > copying, distribution, or either dissemination, either whole or partial,<br>
>> > is<br>
>> > strictly forbidden except previous formal approval of the named<br>
>> > addressee(s). If you are not the intended recipient, please contact<br>
>> > immediately the sender by telephone, fax or e-mail and delete the<br>
>> > information in this message that has been received in error. The sender<br>
>> > does<br>
>> > not give any warranty or accept liability as the content, accuracy or<br>
>> > completeness of sent messages and accepts no responsibility for changes<br>
>> > made after they were sent or for other risks which arise as a result of<br>
>> > e-mail transmission, viruses, etc.<br>
>> ><br>
>> > ------------------------------<wbr>------------------------------<wbr>---------<br>
>> ><br>
>> ><br>
>> > On Thu, Apr 13, 2017 at 10:35 PM, Eric Goddard <<a href="mailto:egoddard1010@gmail.com">egoddard1010@gmail.com</a>><br>
>> > wrote:<br>
>> >><br>
>> >> Hi all,<br>
>> >><br>
>> >> I'm running Geonode 2.6c1 on Ubuntu 16.04 installed using Ansible<br>
>> >> (with geoserver-2.9.x-oauth2). My geonode instance is served over<br>
>> >> https with a LetsEncrypt certificate.<br>
>> >><br>
>> >> After enabling ssl, I've gone through and changed the URLS for geonode<br>
>> >> and geoserver everywhere that I can think of so that it uses the https<br>
>> >> endpoint:<br>
>> >><br>
>> >> /var/lib/tomcat8/webapps/<wbr>geoserver/data/security/role/<wbr>geonode REST<br>
>> >> role service/config.xml<br>
>> >><br>
>> >><br>
>> >> /var/lib/tomcat8/webapps/<wbr>geoserver/data/security/auth/<wbr>geonodeAuthProvider/config.xml<br>
>> >><br>
>> >><br>
>> >> /var/lib/tomcat8/webapps/<wbr>geoserver/data/security/<wbr>filter/geonode-oauth2/config.<wbr>xml<br>
>> >> /var/lib/tomcat8/webapps/<wbr>geoserver/data/global.xml<br>
>> >><br>
>> >> GEOSERVER_LOCATION in local_settings.py has also been updated to the<br>
>> >> https endpoint.<br>
>> >><br>
>> >> I also changed the redirect uris in the GeoServer application entry in<br>
>> >> the geonode admin panel under Django Oauth2 Toolkit > GeoServer to the<br>
>> >> https endpoint.<br>
>> >><br>
>> >><br>
>> >> The geoserver log after attempting to access geoserver from the logged<br>
>> >> in admin account:<br>
>> >><br>
>> >> 2017-04-13 15:13:14,757 DEBUG<br>
>> >> [org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
>> >> Checking match of request : 'Path: /, QueryString: null'; against<br>
>> >> '/web/**'<br>
>> >> 2017-04-13 15:13:14,757 DEBUG<br>
>> >> [org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
>> >> Checking match of request : 'Path: /, QueryString: null'; against<br>
>> >> '/gwc/rest/web/**'<br>
>> >> 2017-04-13 15:13:14,757 DEBUG<br>
>> >> [org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
>> >> Checking match of request : 'Path: /, QueryString: null'; against '/'<br>
>> >> 2017-04-13 15:13:14,758 DEBUG<br>
>> >> [org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
>> >> Matched Path: /, QueryString: null with /<br>
>> >> 2017-04-13 15:13:14,758 DEBUG [org.geoserver.security] - Inspecting<br>
>> >> the http request looking for the GeoNode Session ID.<br>
>> >> 2017-04-13 15:13:14,758 DEBUG [org.geoserver.security] - Found 9<br>
>> >> cookies!<br>
>> >> 2017-04-13 15:13:14,759 DEBUG [org.geoserver.security] - Found GeoNode<br>
>> >> cookie: fgalnbhxuf3ynqazgs3bfm0uqqkk71<wbr>l0<br>
>> >> 2017-04-13 15:13:14,761 DEBUG [org.geoserver.security] -<br>
>> >> preAuthenticatedPrincipal = null, trying to authenticate<br>
>> >> 2017-04-13 15:13:14,768 TRACE [org.geoserver.ows.<wbr>OWSHandlerMapping] -<br>
>> >> No handler mapping found for [/]<br>
>> >> 2017-04-13 15:13:14,769 DEBUG<br>
>> >><br>
>> >><br>
>> >> [org.geoserver.security.<wbr>filter.<wbr>GeoServerSecurityContextPersis<wbr>tenceFilter$1]<br>
>> >> - SecurityContextHolder now cleared, as request processing completed<br>
>> >> 2017-04-13 15:13:14,944 DEBUG<br>
>> >> [org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
>> >> Checking match of request : 'Path: /web/, QueryString: null'; against<br>
>> >> '/web/**'<br>
>> >> 2017-04-13 15:13:14,944 DEBUG<br>
>> >> [org.geoserver.security.<wbr>IncludeQueryStringAntPathReque<wbr>stMatcher] -<br>
>> >> Matched Path: /web/, QueryString: null with /web/**<br>
>> >> 2017-04-13 15:13:14,944 DEBUG [org.geoserver.security] - Inspecting<br>
>> >> the http request looking for the GeoNode Session ID.<br>
>> >> 2017-04-13 15:13:14,944 DEBUG [org.geoserver.security] - Found 9<br>
>> >> cookies!<br>
>> >> 2017-04-13 15:13:14,945 DEBUG [org.geoserver.security] - Found GeoNode<br>
>> >> cookie: fgalnbhxuf3ynqazgs3bfm0uqqkk71<wbr>l0<br>
>> >> 2017-04-13 15:13:14,946 DEBUG [org.geoserver.security] -<br>
>> >> preAuthenticatedPrincipal = null, trying to authenticate<br>
>> >> 2017-04-13 15:13:14,953 TRACE [org.geoserver.ows.<wbr>OWSHandlerMapping] -<br>
>> >> No handler mapping found for [/web/]<br>
>> >> 2017-04-13 15:13:15,021 DEBUG [org.geoserver.filters] - Compressing<br>
>> >> output for mimetype: text/html;charset=UTF-8<br>
>> >> 2017-04-13 15:13:15,028 DEBUG<br>
>> >><br>
>> >><br>
>> >> [org.geoserver.security.<wbr>filter.<wbr>GeoServerSecurityContextPersis<wbr>tenceFilter$1]<br>
>> >> - SecurityContextHolder now cleared, as request processing completed<br>
>> >><br>
>> >><br>
>> >> I'm not really sure where go from here with troubleshooting, so any<br>
>> >> help is greatly appreciated. I've tried to include everything that<br>
>> >> that would be relevant to this issue, but if there is some other<br>
>> >> information that's needed please let me know.<br>
>> >><br>
>> >> Thanks!<br>
>> >><br>
>> >> Eric<br>
>> >> ______________________________<wbr>_________________<br>
>> >> geonode-users mailing list<br>
>> >> <a href="mailto:geonode-users@lists.osgeo.org">geonode-users@lists.osgeo.org</a><br>
>> >> <a href="https://lists.osgeo.org/mailman/listinfo/geonode-users" rel="noreferrer" target="_blank">https://lists.osgeo.org/<wbr>mailman/listinfo/geonode-users</a><br>
>> ><br>
>> ><br>
><br>
><br>
______________________________<wbr>_________________<br>
geonode-users mailing list<br>
<a href="mailto:geonode-users@lists.osgeo.org">geonode-users@lists.osgeo.org</a><br>
<a href="https://lists.osgeo.org/mailman/listinfo/geonode-users" rel="noreferrer" target="_blank">https://lists.osgeo.org/<wbr>mailman/listinfo/geonode-users</a><br>
</div></div></blockquote></div><br></div>