On 09/30/2009 09:48 AM, Mike McGrath wrote:
On Wed, 30 Sep 2009, Darren VanBuren wrote:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
This seems to be a WordPress issue, with the whole SSL deal.
It's pretty much go, but we need to clarify that users should manually login before clicking the signup link in order to circumvent this little issue.
Well lets find some victim^H^H^H^H^H^Hvolunteer and get at least one blog in there and document the process all the way through.
Anyone want to step forward?
So, here's what I'm seeing:
1) logging-in appears to work fine, though I get a spurious "FAS login failed" before I've even tried a uname/passwd auth. Are we trying some sort of client-side cert validation first, and that's failing?
2) When trying to create a blog from the logged-out state, I get sent to the login page, w/ a parameter that's supposed to take me to the signup page upon succesful authentication:
https://blogs.fedoraproject.org/wp/wp-login.php?redirect_to=http%253A%252F%2...
Something very odd is happening, though. The 302 response code looks sane:
POST /wp/wp-login.php HTTP/1.1 [snip] HTTP/1.x 302 Found Date: Wed, 30 Sep 2009 16:17:26 GMT Server: Apache/2.2.3 (Red Hat) X-Powered-By: PHP/5.1.6 Expires: Wed, 11 Jan 1984 05:00:00 GMT Last-Modified: Wed, 30 Sep 2009 16:17:26 GMT Cache-Control: no-cache, must-revalidate, max-age=0 Pragma: no-cache Location: http%3A%2F%2Fblogs.fedoraproject.org%2Fwp%2Fwp-signup.php
... but firefox then proceeds to generate this request:
GET /wp/http%3A%2F%2Fblogs.fedoraproject.org%2Fwp%2Fwp-signup.php HTTP/1.1
... which yields (validly) a 404 error.
No idea why firefox is trying to follow that path; redacted Live HTTP Headers log attached.
Anyone testing this w/ a browser other than F11's firefox? Same issue shows up on iPhone's Safari browser...
--Bret