Security - Not prompting for login
I am working on upgrading our existing Essentials 3.15 installation to 4.0.2.
Everything appears to upgrade correctly except for sites that use security. Because of the new security I assumed I would need to make some changes to the sites.
I have it set up to use the Geocortex Identity Server for both Users and Roles. The identity server is configured to use Active Directory as the membership provider and the XML Role Provider. This is working correctly. I am not using SSL as this is only a test system.
The problem is that when I load the website it fails without ever asking for a login. If I try to get to the REST endpoint I see "The current user cannot access the desired resource." If I click on the "Sign In" link on the same page and log in I can then see the page. I can then successfully load the website. The problem appears to be that I am not getting prompted to login. Has anybody run into this problem or know if I am missing something?
-
Hi Marcus,
Are you using a 2.0 viewer, either HTML5 or Silverlight?
The 1.x viewers won't know how to handle the new security model, and will display an error instead of redirecting to the login prompt.
Regards,
-Malcolm
0 -
That is probably the issue. I was hoping that I could use the older viewers as there is some custom code in some of them that breaks when we upgrade.
0 -
I have some of the same issue. I have just installed GE 4.1.0, and after reading Malcolm's advice, i also installed GVS 2.2. After installing the viewer, I get to the login-dialog. But after logging in with a valid user, I get Access Denied. The site is restricted. And I get the message "The current user cannot access the desired resource". In Essentials 3.x, I always got this message unless I added
<Allow WellKnownRole="Guest">
<Authenticate />
</Allow>to the site.xml. Now, it seems that the security system has changed, and that this workaround does not work anymore
Any help would be highly appreciated!
0 -
Sounds like the same issue that I am getting. I have not set up security before so maybe it is that I am still trying to figure it out. I am using GE 4.1, HTML5 2.2, and Geocortex Identity Server credentials. Security is set to only allow a certain role access, so when testing and I log in with valid credentials but invalid role I get the image shown below. There is no way to sign out short of clearing cache and starting again. I tried to add some code to catch this and automatically sign out the user. The event was caught, but the command didn't work:
viewer.eventRegistry.event("AuthenticationFailedEvent").subscribe(this, function () {
viewer.commandRegistry.command("SignOut").execute();
})/customer/servlet/servlet.FileDownload?file=00P6000000em1EhEAI
Also, when I am able to login, then sign out. I brings me to a page stating: You've signed out instead of back to asking for sign in credentials. Any insight would be greatly appreciated.
0 -
Possibly Jostein, the providers are not all enabled on your security tab in GE Manager. Double check that they are all ticked on. (just one thing to try)
0 -
Yes, the providers are enabled. But thank you Matt. I have spent almost an entire day with the Norwegian Geocortex distributor, but they could not solve the problem. It could have something to do with our proxy server setup and/or SSL. We have to use https to get through the proxy server, while SSL is not enabled on our web server or ArcGIS Server.
We have rolled our system back to 3.15, and will continue to test with 4.1 to try to solve this. Any ideas are appreciated.
0
Du måste logga in om du vill lämna en kommentar.
Kommentarer
6 kommentarer