Try doing the same call using curl. This should be something like:
curl -X GET -u xxx:yyy https://hipposeg.cs.ucl.ac.uk/data/archive/projects
If that works, try to run the calls through a proxy to see what the difference in headers is.
--
You received this message because you are subscribed to the Google Groups "xnat_discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
xnat_discussi...@googlegroups.com.
To post to this group, send email to
xnat_di...@googlegroups.com.
Visit this group at
http://groups.google.com/group/xnat_discussion?hl=en-US.
For more options, visit https://groups.google.com/groups/opt_out.
You’d need something that can decode the https traffic. The main tool that I use for this sort of thing is Fiddler2, with the drawback being that that is only usable on Windows (you can however run Fiddler2 on a Windows machine but that will work fine as long as you can reach the proxy machine and server destination). For cross-platform compatibility, there are Charles and BurpSuite, but I’m not sure how to make those work to capture the https traffic.
You can also have a look at the logs on your server. I think you guys have an Apache HTTPD front-end running to manage the SSL transaction. That’s where things are breaking, so the HTTPD logs may give you some idea as to what’s going wrong on that end.
To clarify one point, this is really a pro-active thing on the server side. The fault is not technically speaking with the client, since whatever’s servicing the call is closing the connection early. That said, there’s clearly something in the call coming from the client that’s causing the server to do that.
--
You received this message because you are subscribed to the Google Groups "xnat_discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
xnat_discussi...@googlegroups.com.
To post to this group, send email to
xnat_di...@googlegroups.com.
Visit this group at
http://groups.google.com/group/xnat_discussion?hl=en-US.
For more options, visit https://groups.google.com/groups/opt_out.
You’d need something that can decode the https traffic. The main tool that I use for this sort of thing is Fiddler2, with the drawback being that that is only usable on Windows (you can however run Fiddler2 on a Windows machine but that will work fine as long as you can reach the proxy machine and server destination). For cross-platform compatibility, there are Charles and BurpSuite, but I’m not sure how to make those work to capture the https traffic.
You can also have a look at the logs on your server. I think you guys have an Apache HTTPD front-end running to manage the SSL transaction. That’s where things are breaking, so the HTTPD logs may give you some idea as to what’s going wrong on that end.
To clarify one point, this is really a pro-active thing on the server side. The fault is not technically speaking with the client, since whatever’s servicing the call is closing the connection early. That said, there’s clearly something in the call coming from the client that’s causing the server to do that.
The problem is on the server, but what Fiddler2 (or another proxy) can do is to make clear precisely what is being sent on each request. That can help you determine why the request from XNATRestClient is causing the reset while the request from curl is being completed properly. Something in the XNATRestClient request is different from curl’s request and that’s the root of your problem.
Should you want to try Charles, there’s a free evaluation period that you can use. All you have to do with XNATRestClient is add the –proxy and –proxyPort options to the command line and point those at the proxy. For curl, it’s something like –proxy address:port. Any proxy that’s handling SSL will require certificate substitution, which basically means you’ll get the proxy’s SSL certificate instead of the destination server certificate and THAT usually requires you to import the proxy SSL certificate into your trusted certs repo, e.g.:
http://www.charlesproxy.com/documentation/using-charles/ssl-certificates/
Regarding the logs, I’m surprised nothing’s getting output though. You can try running Tomcat with these options on the JVM:
-Djavax.net.debug=all -Djavax.net.ssl=ssl.handshake
That may spit a BUNCH more info that you’d really like to see, but you should at least get info about your SSL transactions.
From: xnat_di...@googlegroups.com [mailto:xnat_di...@googlegroups.com]
On Behalf Of Miklos Espak
Sent: Tuesday, May 21, 2013 1:33 PM
To: xnat_di...@googlegroups.com
Subject: Re: [XNAT Discussion] XnatRestClient vs https
On Tue, May 21, 2013 at 7:15 PM, Herrick, Rick <herr...@mir.wustl.edu> wrote:
--
You received this message because you are subscribed to the Google Groups "xnat_discussion" group.
To unsubscribe from this group and stop receiving emails from it, send an email to
xnat_discussi...@googlegroups.com.
To post to this group, send email to
xnat_di...@googlegroups.com.
Visit this group at
http://groups.google.com/group/xnat_discussion?hl=en-US.
For more options, visit https://groups.google.com/groups/opt_out.