ogce is now authneticating with the blazerid at the following url:
http://metric.it.uab.edu/nmi/portal/?action=ChefLoginUser
This works but all the urls in the page load are competing with each other
and causing many trips to the weblogin server. This causes the buttons on
the page not to render properly, the logo not to load, and the other users
iframe to flash. Clicking around the site seems to calm it down, but not
always.
Need to figure out how to get the https request not to comptete with each
other in passing the pubcookie cookies back and forth to the login server.
Would be ideal if they could all trust the base session cookie. no idea
why they aren't.
The basics to the apache tomcat config are: enable the ajp13 connect,
protect the apache side url with pubcookie, set
JkEnvVar REMOTE_USER %{REMOTE_USER}
in the apache config to pass the remote user var to tomcat. And set
tomcatAuthentication="false"
in the server.xml file to get tomcat to trust apache's setting of
remote_user and pass that along to the servlet environment for servlets to
read.
