Details
-
Type:
Bug
-
Status: To-Do (View Workflow)
-
Priority:
Major
-
Resolution: Unresolved
-
Affects Version/s: None
-
Fix Version/s: None
-
Labels:None
-
Story Points:0.5
-
Epic Link:
-
Sprint:Fall 4 2022 Oct 10
Description
When adding a secure data source, a user is asked to enter their password multiple times after submitting the data source originally.
The first 16 steps are the same as in IGBF-3195.
To reproduce:
1. Reset preferences by going to File > Preferences > Other Options > Reset Preferences to Defaults
2. Open IGB and go to Preferences > Data Sources > Add…
3. Set Name to: secure1
4. Type to: Quickload
5. URL to: http://igbquickload.org/secureQuickloadTestSites/secureSiteTest
6. Click Submit
7. A pop-up should appear.
8. It reads “https://igbquickload.org/rnaseq/ asks for authentication:” when it should read “http://igbquickload.org/secureQuickloadTestSites/secureSiteTest asks for authentication”
9. Enter User: “guest” and Password: “guest”
10. Make sure that Save Password is checked and click OK.
11. Again click Add..
12. Name: secure2
13. Type: Quickload
14. URL: http://igbquickload.org/secureQuickloadTestSites/secureSiteTest2
15. Click Submit
16. A pop-up appears showing the URL for the previous data source: https://igbquickload.org/secureQuickloadTestSites/secureSiteTest/ when it should have the …/secureSiteTest2 url
17. Enter User: “guest2” and Password: “guest2” .
18. Make sure that Save Password is checked and click OK.
19. Both secure1 and secure2 are now available data sources.
20. Make sure Auto Load Data is checked and close the window.
21. On the home page, click the A. thaliana genome icon.
22. IGB opens the pop-up again asking for the password for secure1, then another for secure2.
23. Entering the usernames and passwords again loads the data.
This problem was only found on IGB version 9.1.10
I tested on 9.1.8 with no issue.
Release testing protocol found at: Data Provider, Secure Data Providers. https://wiki.bioviz.org/confluence/display/ITD/Data+Provider#:~:text=Secured%20Data%20Providers
Attachments
Issue Links
- is blocked by
-
IGBF-3211 Update logic to send redirect url to IGB Data Source endpoint
-
- Closed
-
Activity
[~aloraine] - It looks good to me, I think it should be good to go ahead and merge to master.
At this time we are unable to modify the code such that both redirects and secure Quickloads work correctly. Additional refactoring will need to be done. See the comments above. Most likely we will need to refactor AddDataProvider.java.
OK thanks!
Made PR and am merging it now.
Master branch installers are built. Notarizing the Mac installer now.
Notarized installer master.dmg is uploaded to https://bitbucket.org/lorainelab/integrated-genome-browser/downloads/. Ready for testing.
The issue is due to checkValidAndSetUrl method introduced in
IGBF-3103where we looked to see if the http url was being redirected to https. This required connecting to the server to see if there was a redirect, but when the server is secure it appears to be initiating the IGB authentication, but it does not appear to save the password correctly. This is why the password is asked for again when loading the data.