Ubuntu Single Sign On Client

pinging of ubuntuone url is done using http address resulting in 403 FORBIDDEN response

Bug #627700 reported by Roman Yepishev
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Ubuntu Single Sign On Client
Fix Released
High
Natalia Bidart
ubuntu-sso-client (Ubuntu)
Fix Released
High
Natalia Bidart
Ubuntu ubuntu-10.10
Maverick
Fix Released
High
Natalia Bidart
Ubuntu ubuntu-10.10

Bug Description

Here's what happens:

2010-09-01 00:30:13,775:775.646924973 ubuntu_sso.main Login successful for app 'Ubuntu One', email '<email address hidden>'
2010-09-01 00:30:13,776:776.504993439 ubuntu_sso.main keyring_get_credentials: app_name 'Ubuntu One'
2010-09-01 00:30:13,799:799.949884415 ubuntu_sso.main keyring_get_credentials: Keyring returned credentials? True
2010-09-01 00:30:13,800:800.745010376 ubuntu_sso.main Maybe pinging url http://edge.one.ubuntu.com/oauth/sso-finished-so-get-tokens/ for app_name 'Ubuntu One
'
2010-09-01 00:30:13,804:804.537057877 ubuntu_sso.main Opening the ping url with urllib2.urlopen. Request to: http://edge.one.ubuntu.com/oauth/sso-finished-so
-<email address hidden>
2010-09-01 00:30:14,743:743.753910065 ubuntu_sso.main Problem getting the credentials from the keyring.
Traceback (most recent call last):
  File "/usr/lib/pymodules/python2.6/ubuntu_sso/main.py", line 477, in _login_success_cb
    self._ping_url(app_name, email, creds)
  File "/usr/lib/pymodules/python2.6/ubuntu_sso/main.py", line 511, in _ping_url
    response = urllib2.urlopen(request)
  File "/usr/lib/python2.6/urllib2.py", line 126, in urlopen
    return _opener.open(url, data, timeout)
  File "/usr/lib/python2.6/urllib2.py", line 397, in open
    response = meth(req, response)
  File "/usr/lib/python2.6/urllib2.py", line 510, in http_response
    'http', request, response, code, msg, hdrs)
  File "/usr/lib/python2.6/urllib2.py", line 429, in error
    result = self._call_chain(*args)
  File "/usr/lib/python2.6/urllib2.py", line 369, in _call_chain
    result = func(*args)
  File "/usr/lib/python2.6/urllib2.py", line 605, in http_error_302
    return self.parent.open(new, timeout=req.timeout)
  File "/usr/lib/python2.6/urllib2.py", line 397, in open
    response = meth(req, response)
  File "/usr/lib/python2.6/urllib2.py", line 510, in http_response
    'http', request, response, code, msg, hdrs)
  File "/usr/lib/python2.6/urllib2.py", line 435, in error
    return self._call_chain(*args)
  File "/usr/lib/python2.6/urllib2.py", line 369, in _call_chain
    result = func(*args)
  File "/usr/lib/python2.6/urllib2.py", line 518, in http_error_default
    raise HTTPError(req.get_full_url(), code, msg, hdrs, fp)
HTTPError: HTTP Error 403: FORBIDDEN

Here's why:
/usr/share/pyshared/ubuntu_sso/main.py
     58 PING_URL = "http://edge.one.ubuntu.com/oauth/sso-finished-so-get-tokens/"

Setting to https fixes this issue but the server apparently fails to add the token to the db, but that's a different bug report.

Related branches

lp:~nataliabidart/ubuntu-sso-client/ping-url-is-https
John Lenton (community): Approve
Roman Yepishev (community): Approve (fieldtest)
Diff: 12 lines (+1/-1)
1 file modified
ubuntu_sso/main.py (+1/-1)
Roman Yepishev (rye)
Changed in ubuntu-sso-client:
status: New → Confirmed
importance: Undecided → High
assignee: nobody → Naty Bidart (nataliabidart)
Changed in ubuntu-sso-client (Ubuntu):
status: New → Confirmed
assignee: nobody → Naty Bidart (nataliabidart)
importance: Undecided → High
dobey (dobey)
Changed in ubuntu-sso-client:
status: Confirmed → Fix Committed
Joshua Hoover (joshuahoover)
Changed in ubuntu-sso-client (Ubuntu):
milestone: none → ubuntu-10.10
tags: added: desktop+
Natalia Bidart (nataliabidart)
Changed in ubuntu-sso-client (Ubuntu Maverick):
status: Confirmed → Fix Released
Changed in ubuntu-sso-client:
status: Fix Committed → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.