You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@zeppelin.apache.org by "Sahitya (Jira)" <ji...@apache.org> on 2020/11/03 15:31:00 UTC

[jira] [Created] (ZEPPELIN-5119) webssout returns json response with content type as application/XML instead of redirecting.

Sahitya created ZEPPELIN-5119:
---------------------------------

             Summary: webssout returns json response with content type as application/XML instead of redirecting.
                 Key: ZEPPELIN-5119
                 URL: https://issues.apache.org/jira/browse/ZEPPELIN-5119
             Project: Zeppelin
          Issue Type: Bug
    Affects Versions: 0.8.0
         Environment: Standalone Zeppelin installation with KnoxSSO.
            Reporter: Sahitya
         Attachments: Screen Shot 2020-11-03 at 9.25.04 AM.png

webssout returns json response '{loggedOut: true}' with content type as application/XML instead of redirecting.


Below is the configuration:

Shiro.ini:

[main]

knoxJwtRealm = org.apache.zeppelin.realm.jwt.KnoxJwtRealm

#knoxJwtRealm.providerUrl = https://internal-customerzepqa-zep-east-26326925.us-east-1.elb.amazonaws.com:8086/

knoxJwtRealm.providerUrl = https://10.47.197.40:8086/

knoxJwtRealm.login = gateway/knoxsso/api/v1/websso

knoxJwtRealm.logout = gateway/knoxsso/api/v1/webssout

knoxJwtRealm.logoutAPI = false

knoxJwtRealm.redirectParam = originalUrl

knoxJwtRealm.cookieName = hadoop-jwt

knoxJwtRealm.publicKeyPath = /opt/knox-1.4.0/conf/knoxsso.pem

#knoxJwtRealm.groupPrincipalMapping = group.principal.mapping

#knoxJwtRealm.principalMapping = principal.mapping

authc = org.apache.zeppelin.realm.jwt.KnoxAuthenticationFilter

 

knoxsso.xml:


        <name>knoxauth</name>

  </application>

  <service>

        <role>KNOXSSOUT</role>

  </service>

  <service>

        <role>KNOXSSO</role>

        <param>

                <name>knoxsso.cookie.secure.only</name>

                <value>false</value>

        </param>

        <param>

                <name>knoxsso.token.ttl</name>

                <value>3600000</value>

        </param>

        <param>

                <name>knoxsso.redirect.whitelist.regex</name>

          <value>^.*$;^https?:\/\/(localhost|10.47.197.40|10.47.197.40:8086|127.0.0.1|0:0:0:0:0:0:0:1|::1):[0-9].*$</value>

        </param>

  </service>

 

knoxssout.xml:

<?xml version="1.0" encoding="utf-8"?>

<topology>
   <gateway>
    <provider>
     <role>webappsec</role>
 

     <name>WebAppSec</name>
     <enabled>true</enabled>
 

    <param>
      <name>cors.enabled</name>
      <value>true</value>
    </param>
 </provider>
 </gateway>
 <service>
 

  <role>KNOXSSOUT</role>
 </service>

</topology>



--
This message was sent by Atlassian Jira
(v8.3.4#803005)