Issue Details (XML | Word | Printable)

Key: MBS-3464
Type: Bug Bug
Status: Closed Closed
Resolution: Fixed
Priority: Critical Critical
Assignee: Oliver Charles
Reporter: Jamie McDonald
Votes: 0
Watchers: 2
Operations

If you were logged in you would be able to see more operations.
MusicBrainz Server

Do not redirect www.musicbrainz.org to musicbrainz.org for /ws requests

Created: 19/Sep/11 11:54 PM   Updated: 21/Sep/11 01:02 PM   Resolved: 21/Sep/11 01:02 PM
Component/s: Web service
Affects Version/s: None
Fix Version/s: Bug fixes, 2011-09-19

Issue Links:
Relates
 


 Description  « Hide

The Android app authenticates user credentials for the first time by making a GET request for user-tags on the VA artist:

http://www.musicbrainz.org/ws/2/artist/89ad4ac3-39f7-470e-963a-56509c546377?inc=user-tags

The realm is set as: musicbrainz.org
The scope is set as: www.musicbrainz.org

This worked fine and users were able to log in, but it stopped working a week or two ago. The request now returns a 401 status code even with valid user credentials, which have been tested on the website. Nothing with regard to authentication has changed on the app side of things since it was released.

Sort Order: Ascending order - Click to sort in descending order
[ Permalink | « Hide ]
voiceinsideyou added a comment - 20/Sep/11 02:39 AM

My guess is that this has been affected by the redirect of www.musicbrainz.org to musicbrainz.org which changed about a week or so ago?

Picard has also been affected by the redirect changing - it seems to break all album loading if you have the server configured as www.musicbrainz.org (possibly because Picard isn't following the redirects, but I'm not sure - it may also be authentication related).

Assigning to this week's release to at least get dev comment, but my guess is that it'd be resolved by updating the app to make requests to musicbrainz.org, not www.musicbrainz.org?


voiceinsideyou made changes - 20/Sep/11 02:39 AM
Field Original Value New Value
Fix Version/s Bug fixes, 2011-09-26 [ 10102 ]
voiceinsideyou made changes - 20/Sep/11 02:40 AM
Link This issue is related to MBS-3095 [ MBS-3095 ]
[ Permalink | « Hide ]
Oliver Charles added a comment - 20/Sep/11 12:45 PM

What voice said sounds correct to me. However, I could add a rule to the redirects to only run if it's not a /ws/* request.


Oliver Charles made changes - 20/Sep/11 12:45 PM
Assignee Oliver Charles [ acid2 ] Robert Kaye [ rob ]
Oliver Charles made changes - 20/Sep/11 12:46 PM
Status Open [ 1 ] Decision Required [ 10000 ]
[ Permalink | « Hide ]
Jamie McDonald added a comment - 20/Sep/11 07:48 PM

I can confirm that removing "www." from the scope and request URL on the client side fixes this issue.


[ Permalink | « Hide ]
Robert Kaye added a comment - 20/Sep/11 07:51 PM

redirect to only run if it's not a /ws/* request sound good.


Robert Kaye made changes - 20/Sep/11 07:51 PM
Assignee Robert Kaye [ rob ] Oliver Charles [ acid2 ]
Priority Normal [ 6 ] Major [ 3 ]
Robert Kaye made changes - 20/Sep/11 07:51 PM
Status Decision Required [ 10000 ] Open [ 1 ]
Robert Kaye made changes - 20/Sep/11 08:02 PM
Fix Version/s Bug fixes, 2011-09-19 [ 10101 ]
Fix Version/s Bug fixes, 2011-09-26 [ 10102 ]
Priority Major [ 3 ] Critical [ 2 ]
[ Permalink | « Hide ]
Oliver Charles added a comment - 21/Sep/11 01:02 PM

Fixed in f422cb5e757bb1565f1999ba1256886e396a6967


Oliver Charles made changes - 21/Sep/11 01:02 PM
Status Open [ 1 ] Closed [ 6 ]
Resolution Fixed [ 1 ]
Oliver Charles made changes - 21/Sep/11 01:02 PM
Summary Digest authentication for ws/2 started failing on user-tags request Do not redirect www.musicbrainz.org to musicbrainz.org for /ws requests
Atlassian JIRA (v4.0.1#471) | Report a problem | Request a feature | Contact administrators
Powered by a free Atlassian JIRA open source license for MetaBrainz Foundation. Try JIRA - bug tracking software for your team.