Greetings Roy,
It turns out the start of catalog.xml should use http, not https (the
validation will fail as the actual xsd on the webserver says http). So,
the catalog xml should not be changed. As Ben said, this most likely works,
not due to something we did in the TDS code base, but perhaps due to an
updated JDOM handling the redirect. Specifically, the server (apache)
returns a "301 Moved Permanently", and perhaps JDOM is doing what Ben's
post suggested, inspecting the header, and following the information
provided by apache. What version of the TDS were you using before?
As a somewhat related issue, many organizations are requiring all
connections go to https, and we have had several support questions from
ESGF, NASA, and NOAA regarding issues with the TDS when https is forced. We
very recently setup our development TDS to have apache force https
everywhere to hopefully catch issues sooner rather than later.
Unfortunately, I don't think we could have caught this particular issue
since it was likely a change in a third party library that allows things to
work, and we don't run older versions of the TDS.
Sean
On Mon, Nov 20, 2017 at 3:18 PM, Roy Mendelssohn - NOAA Federal <
roy.mendelssohn@xxxxxxxx> wrote:
> I don't know Java that well, but I do know Python. In python, some of
> the http libraries do not handle https properly. I have been told by
> others, but do not know this first hand, that the some is true of at
> least some Java libraries. All I know is a did a reboot a couple of months
> ago, and everything worked. I changed nothing on my end, and it failed
> today, on accessing correctly that remote file.
>
> Once I brought down the latest war, with my catalogs otherwise the same,
> things worked. So I don't know enough about Java to say anything
> definite, but it sure looks like it was the forced redirect that caused
> the problem. Wha I would suggest in the future is:
>
> 1. Warn people ahead of time that this will happen.
>
> 2. Set up a test site to see if it causes any problems.
>
> 3. If the catalog headers should be changed, post that beforehand so
> people can make changes.
>
> Just my $0.02 - there are probably other good ways to go about this.
>
> -Roy
>
> > On Nov 20, 2017, at 2:12 PM, dmh@xxxxxxxx wrote:
> >
> > [Sorry to interject]
> > Roy, you say:
> >> But we have found generally that forced redirects of http do not work
> correctly in a lot of languages.
> > Do you have any insight into why they fail?
> > Should we just reject http: calls instead of redirecting
> > them?
> > =Dennis Heimbigner
> > Unidata
> >
> >
>
> **********************
> "The contents of this message do not reflect any position of the U.S.
> Government or NOAA."
> **********************
> Roy Mendelssohn
> Supervisory Operations Research Analyst
> NOAA/NMFS
> Environmental Research Division
> Southwest Fisheries Science Center
> ***Note new street address***
> 110 McAllister Way
> Santa Cruz, CA 95060
> Phone: (831)-420-3666
> Fax: (831) 420-3980
> e-mail: Roy.Mendelssohn@xxxxxxxx www: http://www.pfeg.noaa.gov/
>
> "Old age and treachery will overcome youth and skill."
> "From those who have been given much, much will be expected"
> "the arc of the moral universe is long, but it bends toward justice" -MLK
> Jr.
>
>