[Cartoweb-users] Bug : RawImage doesn't work under protected area

Oliver Christen oliver.christen at camptocamp.com
Thu Apr 10 01:58:29 EDT 2008


im not sure but I think you can keep the context with the export image 
plugin as it doesnt use a header(..) command but use the common renderForm 
output flow, which may solve the https problem.
it's worth giving a try.




Oliver Christen wrote:
> are you using the mode=image or the exportImg plugin ?
>

We are using the mode=image ... Don't know the exportImg plugin.

As the bug I report could be only a rfe (request for ehancement).
There's some trouble here with their server inside a nated dmz. And this 
cause the trouble.

I've just modified the ClientImage.php to use a header("Location: $mapUrl"); 
and everything work for their case.

Is there any advantage to use the exportImg plugin over the mode=image ???


>
>
>
>> Hello all
>>
>> With the following situation ( asked by customer ).
>>
>> The whole website where cartoweb reside is protected by an http
>> authentification.
>> So you must provide a username and password before seeing everything.
>>
>> We are outside the scope of cw3 authentification.
>>
>> Everything works fine. But ... :-)
>>
>> If you ask the rawimage this one is launching (line 608 ) a
>>        $infos = getimagesize($mapPath);
>> $mapPath point to the
>> http://myserver/generated/images/47fc8924_4c55_c.png
>> and as the plugins is working under it's own env, it doesn't have the
>> customer browser security context.
>>
>> and you got this nice error :
>> Class : CartocommonException
>> Message : Error [2,
>> getimagesize(http://myserver/generated/images/47fc89fa_4b64_c.png)
>> [function.getimagesize]: failed to open
>> stream: Connexion refusée,
>> /cartoweb3/coreplugins/images/client/ClientImages.php, 608]
>> Backtrace:
>>
>> file: UNKNOWN - UNKNOWN
>> etc etc ....
>>
>> So what we have as solutions :
>>
>> Make the plugin (could be at another place) the ability to transmit a
>> url as
>> http://myuser:mypassord@myserver
>> as myuser and mypassword as ini param.
>>
>> This could also permit in client-server scenari to have one protected
>> by a http-auth acces.
>>
>>
>> What do you thing about that ?
>>
>>
>> PS : to Oliver, this plugins also have the fantom \r\n after the ?>
>> -- 
>>
>>     Bruno Friedmann  bruno at ioda-net.ch
>>
>> Ioda-Net Sàrl   - www.ioda-net.ch
>>  2830 Vellerat - Switzerland
>>
>>  Tél : ++41 32 435 7171
>>  Fax : ++41 32 435 7172
>>  gsm : ++41 78 802 6760
>>
>> C'est Facile et Cool d'Évoluer en ligne : www.cfcel.com
>>
>>
>> _______________________________________________
>> Cartoweb-users mailing list
>> Cartoweb-users at lists.maptools.org
>> http://lists.maptools.org/mailman/listinfo/cartoweb-users
>>
>


-- 

     Bruno Friedmann  bruno at ioda-net.ch






More information about the Cartoweb-users mailing list