New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Login leads to wrong URL when using ssl proxy #5290
Comments
Thanks for the report! Did you configure something in your config file as explained in the Proxy FAQ? |
In my config these take place: [General] |
Any news in the development according to this problem? With 2.4 and 2.4.1 nothing is corrected yet? |
@thetrial we have not yet schedule this bug. If you need it fixed asap please contact: http://piwik.org/consulting/ - Thank you! |
Well, I left the whole ssl proxy stuff with piwik for now, but I don’t think that this is it. Especially piwik should be able to handle these things proper. Any news concerning that? Sadly I cannot try it anymore, now. |
let's investigate this issue as part of the broader set of bugs in #6880 -> our goal will be to make Piwik work perfectly in this special use case which many users have reported issues with. |
See #6644 |
Concerning Piwik 2.3.0
Given:
A short URL for piwik like <http://p.test.invalid>. This is <http://www.test.invalid/piwik/>.
An ssl proxy that redirects all <http://(*)test.invalid> traffic to <https://ssl.kundenserver.invalid/test.invalid>.
A rewrite-rule via .htaccess that perfectly works.
All above not run on an own server but a hosted web package.
Awaited (and worked with Piwik 1):
Calling <http://p.test.invalid> invokes the correct Piwik login page.
Logging in there forwards to the correct address <https://ssl.kundenserver.invalid/test.invalid/piwik/index.php?module=MultiSites&action=index&idSite=1&period=range&date=last30>.
What happens with Piwik 2:
Calling <http://p.test.invalid> invokes the correct Piwik login page.
Logging in there forwards to the WRONG address <https://ssl.kundenserver.invalid/piwik/index.php>
After that happens one can circumnavigate the problem with calling once more again <http://p.test.invalid>.
THEN the right URL occurs: <https://ssl.kundenserver.invalid/test.invalid/piwik/index.php?module=MultiSites&action=index&idSite=1&period=range&date=last30>.
This is a problem for the user.
But this could be also critical for all Piwik users due to the fact that it could be that all Piwik calls with Piwik 2, using this specific ssl proxy service lead to the central ssl proxy address.
Ive anonymized the adresses, but the scheme is as is. This is a service provided by 1&1 in Germany.
Piwik forgets the specific site URL part in the forwarded new address.
This did not happen with Piwik 1, it is new to Piwik 2.
Piwik 2 has a problem to detect (?) and work with an ssl reverse proxy setup. It also does not show an own logo branding and it does not show the little graphs at the multiple sites dashboard.
Piwik 1 had another problem to detect and work with an ssl reverse proxy setup. It either did not show an own logo branding but it showed all other graphs, including the previews graphs at the multiple sites dashboard.
I dont know if it is of interest, but: When logging out, Piwik 2 leads to the right login adress <https://ssl.kundenserver.invalid/test.invalid/piwik/index.php?module=CoreHome&action=>, maybe this is a point to narrow the bug.
The text was updated successfully, but these errors were encountered: