SSO problem when accessing by IP (SEAM)

Feb 19, 2011 at 5:38 AM

Hi everyone, hi dblock,

I'm working on a SEAM-framework project, using Waffle for SSO. It was kinda stable but now, I'm having a headache with accessing the server by IP address.

(No problem accessing by server-name)

 

This is a summary for what I'm doing:

- SEAM + Facelets2

- Waffle library: using Servlet instead of the default Filter

- Access URL: [ http://ServerIPAdress/pe4j/winauth ]

(after successfully negociated, my servlet will forward to the autoLogin.xhtml page and invoke my autoLogin() method to verify the username. If the username is valid, it will forward to POT0801f.xhtml page. And in case you need more information, POT0801f contains other page & iframes... )

 

This is the problem:

It seems OK with the SSO, I can see a success forward to POT0801f.xhtml. But after that things don't seem right at all.

When I click a link (form submit type), it shows no effect! (but no problem with href link)

Doing packets-capture and it turns out that the request has no content, I wonder why...

 

Here are the packets I captured:

 

***** access (servername) *****

GET /pe4j/winauth HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: vm01win2k8r2Connection: Keep-Alive

HTTP/1.1 401 UnauthorizedDate: Fri, 18 Feb 2011 06:22:55 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerX-UA-Compatible: IE=EmulateIE7WWW-Authenticate: NegotiateWWW-Authenticate: NTLMWWW-Authenticate: Basic realm="BasicSecurityFilterProvider"Connection: keep-alive, Keep-AliveKeep-Alive: timeout=15, max=100Transfer-Encoding: chunkedContent-Type: text/html; charset="iso-8859-1"
5f <HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY><H1>401 Unauthorized</H1></BODY></HTML>0

GET /pe4j/winauth HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: vm01win2k8r2Connection: Keep-AliveAuthorization: Negotiate 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

HTTP/1.1 302 Moved TemporarilyDate: Fri, 18 Feb 2011 06:22:55 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerContent-Location: http://vm01win2k8r2/pe4j/autoLogin.jsfSet-Cookie: JSESSIONID=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jSet-Cookie: peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57; Path=/X-UA-Compatible: IE=EmulateIE7WWW-Authenticate: Negotiate oYG2MIGzoAMKAQChCwYJKoZIgvcSAQICooGeBIGbYIGYBgkqhkiG9xIBAgICAG+BiDCBhaADAgEFoQMCAQ+ieTB3oAMCARKicARuFr7/u/LHnk5iR6eNkjjzg1n9RjUfcxJdWGgyHIbsKL2/tqS9Xb0gl6jIETEJXPc+Vig1pWDqH+ImpKY1o0T2/h+aCyt2LYacycFrO0xtyMdQkBfC5XaC5gEARqUQea3ynpqSETIPvAtb/GhmW0M=X-Powered-By: JSF/1.2Location: http://vm01win2k8r2/pe4j/POT/POT0801f.jsf;jsessionid=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71076Keep-Alive: timeout=15, max=99Connection: Keep-AliveTransfer-Encoding: chunkedContent-Type: text/html
22b<HTML><HEAD><TITLE>Redirect to http://vm01win2k8r2/pe4j/POT/POT0801f.jsf;jsessionid=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71076</TITLE></HEAD><BODY><A HREF="http://vm01win2k8r2/pe4j/POT/POT0801f.jsf;jsessionid=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71076">http://vm01win2k8r2/pe4j/POT/POT0801f.jsf;jsessionid=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71076</A></BODY></HTML>0

GET /pe4j/POT/POT0801f.jsf;jsessionid=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71076 HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: vm01win2k8r2Connection: Keep-AliveCookie: JSESSIONID=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57

HTTP/1.1 200 OKDate: Fri, 18 Feb 2011 06:22:55 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerContent-Length: 818Set-Cookie: JSESSIONID=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7X-Powered-By: JSF/1.2Keep-Alive: timeout=15, max=98Connection: Keep-AliveContent-Type: text/html; charset=UTF-8
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd" ><html xmlns="http://www.w3.org/1999/xhtml"> <head>      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />      <meta http-equiv="Pragma" content="no-cache" />      <meta http-equiv="Cache-Control" content="no-cache" />      <link rel="stylesheet" type="text/css" href="/pe4j/css/portal.css" />  <title>ツ-ツPOWER EGG</title> </head> <frameset rows="80,*"> <frame id="menu" name="menu" title="menu" src="/pe4j/POT/POT0802d.jsf" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" />   <frame id="content" name="content" title="content" src="/corpview/data/gurahu_f.html" frameborder="0" marginwidth="0" marginheight="0" scrolling="yes" /> </frameset></html>

GET /pe4j/POT/POT0802d.jsf HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Referer: http://vm01win2k8r2/pe4j/POT/POT0801f.jsf;jsessionid=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71076Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: vm01win2k8r2Connection: Keep-AliveCookie: JSESSIONID=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57

HTTP/1.1 200 OKDate: Fri, 18 Feb 2011 06:22:55 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerContent-Length: 6254Set-Cookie: JSESSIONID=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7X-Powered-By: JSF/1.2Expires: Fri, 18 Feb 2011 06:22:55 GMTPragma: no-cacheCache-Control: no-cacheKeep-Alive: timeout=15, max=97Connection: Keep-AliveContent-Type: text/html; charset=UTF-8
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd" ><!--    Process    : ポータル: コーポレートナビ    Document   : POT0802d--><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Pragma" content="no-cache" /><meta http-equiv="Cache-Control" content="no-cache" /><title>コーポレートナビツ-ツPOWER EGG</title><link rel="stylesheet" type="text/css" href="/pe4j/css/main.css" /><link rel="stylesheet" type="text/css" href="/pe4j/css/print.css" media="print" /><link rel="stylesheet" type="text/css" href="/pe4j/css/component.css" /><script type="text/javascript" charset="UTF-8" src="/pe4j/scripts/component.js"></script>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <link rel="stylesheet" type="text/css" href="/pe4j/css/main.css" /> <link rel="stylesheet" type="text/css" href="/pe4j/css/portal.css" /> <style type="text/css"> html,body { overflow-x: hidden !important; overflow-y: hidden !important; margin-top: 0px; padding-top: 0px; }
table { width: 100%; }
td.right { text-align: right; padding-right: 7px; }
.menu img { vertical-align: middle !important; }
.menu td { vertical-align: middle !important; }
div.breadcrumbs { height: 22px; padding: 7px 0px 0px 0px !important; margin: none !important; }
.paddingLeft { padding-left: 7px; }
.directMenuButton { width: 48px; height: 42px; }
.directMenuButton img { width: 48px; height: 42px; } </style><script type="text/javascript">//<![CDATA[document.onkeydown = function(evt) {  var event = (evt) ? evt : window.event;  if (event.keyCode == 8) {      var type;      var obj;      if (document.all) {          type = event.srcElement.type;          obj = event.srcElement;      } else {          type = event.target.type;          obj = event.target;      }      if (type != 'text' && type != 'textarea' && type != 'password') {          return false;      } else {          if (obj.readOnly == true || obj.readOnly == 'readonly') {              return false;          }      }  }}//]]></script></head><body onload="fncFocusToFirstInputElement();try{if(window.document.title){top.window.document.title = window.document.title;}}catch(e){}" onunload="javascript:if(typeof _underProcessing != 'undefined') {_underProcessing.close();}"><form id="j_id5" name="j_id5" method="post" action="/pe4j/POT/POT0802d.jsf" enctype="application/x-www-form-urlencoded"><input type="hidden" name="j_id5" value="j_id5" /><input type="hidden" name="javax.faces.ViewState" id="javax.faces.ViewState" value="_id24592" autocomplete="off" />
<table class="collapse-table-nopad" style="width: 100%;"> <tr class="menu"> <td style="width:110px"><div><script type="text/javascript" language="Javascript">function dpf(f) {var adp = f.adp;if (adp != null) {for (var i = 0;i < adp.length;i++) {f.removeChild(adp[i]);}}};function apf(f, pvp) {var adp = new Array();f.adp = adp;var i = 0;for (k in pvp) {var p = document.createElement("input");p.type = "hidden";p.name = k;p.value = pvp[k];f.appendChild(p);adp[i++] = p;}};function jsfcljs(f, pvp, t) {apf(f, pvp);var ft = f.target;if (t) {f.target = t;}f.submit();f.target = ft;dpf(f);};</script><a href="#" onclick="if(typeof jsfcljs == 'function'){jsfcljs(document.getElementById('j_id5'),{'j_id5:j_id8':'j_id5:j_id8'},'');}return false"><img src="/pe4j/img/naviview_perogo.gif" alt="コーポレートナビを更新" height="49" title="コーポレートナビを更新" width="110" /></a></div> </td> <td style="width:49px"><div style="height:49px;width:69px"></div> </td> <td style="width:10px"><div><img src="/pe4j/img/naviview_shadow.gif" height="49" width="10" /></div><div style="position:absolute;top:35px;left:27px;_left:23px;*left:24px;text-align:right;width:6em;"><span style="color:#02025c;">Ver.2.2</span></div> </td> <td><div>Nguyen Hoang Trong Duyツさんがログイン中...ツ<a href="#" onclick="if(typeof jsfcljs == 'function'){jsfcljs(document.getElementById('j_id5'),{'j_id5:j_id25':'j_id5:j_id25'},'_parent');}return false" class="noline">ログアウト</a> <iframe src="/pe4j/servlet/SessionKeeper" style="width:1px;height:1px;display:none"></iframe></div> </td> </tr> </table> <table class="collapse-table-nopad breadcrumbs" style="width:100%"> <tr style="background-image: url('../img/breadcrumbs_bg.gif')"> <td><div style="margin-top:5px"> ツ<a href="/pe4j/POT/POT0802d.jsf?cid=71077&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toStartUpNavi" id="j_id5:j_id30" target="_parent"><img src="/pe4j/img/menu_startup.gif" alt="スタートアップナビを表示" style="height:19px;width:94px;" title="スタートアップナビを表示" /></a><a href="/pe4j/POT/POT0802d.jsf?cid=71077&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toCorpNavi" id="j_id5:j_id32" target="_parent"><img src="/pe4j/img/menu_corp_o.gif" alt="コーポレートナビを表示" style="height:19px;width:86px;margin-left:5px;" title="コーポレートナビを表示" /></a><a href="/pe4j/POT/POT0802d.jsf?cid=71077&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toNaviView" id="j_id5:j_id34" target="_parent"><img src="/pe4j/img/menu_navi.gif" alt="ナビビューを表示" style="height:19px;width:69px;margin-left:5px;" title="ナビビューを表示" /></a></div> </td> </tr> </table></form><script type="text/javascript">function createXMLHttpRequest99() {  if (window.XMLHttpRequest) {    return new XMLHttpRequest();  } else if (window.ActiveXObject) {    try {      return new ActiveXObject('Msxml2.XMLHTTP');    } catch (e) {      return new ActiveXObject('Microsoft.XMLHTTP');    }  } else {    return false;  }}function keepConversation () {var request = createXMLHttpRequest99();var url='/pe4j/keepConversation.jsf?cccid=71077';try {request.open('GET', url, false);if (/*@cc_on!@*/false) { request.send(null); } else {request.send(''); }} catch(e) {}}setInterval(keepConversation, 300000);</script></body></html>

GET /pe4j/servlet/SessionKeeper HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Referer: http://vm01win2k8r2/pe4j/POT/POT0802d.jsfAccept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: vm01win2k8r2Connection: Keep-AliveCookie: JSESSIONID=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57

HTTP/1.1 200 OKDate: Fri, 18 Feb 2011 06:22:56 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerSet-Cookie: JSESSIONID=f851fdcd7578b68b526812c7caa73b71aaca370c814ec44e21a8f2e8791b22e2.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7Keep-Alive: timeout=15, max=96Connection: Keep-AliveTransfer-Encoding: chunkedContent-Type: text/html; charset=Shift_JIS
c1 <html><head><title>Session Keep Main Page</title></head><body><p>This page is session keeping main page.</p><iframe width="100%" height="50" src="SessionKeeper?self=1"></iframe></body></html>
0

 

***** link click (servername) *****

POST /pe4j/POT/POT0802d.jsf HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xamliニ, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Referer: http://vm01win2k8r2/pe4j/POT/POT0802d.jsfAccept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Content-Type: application/x-www-form-urlencodedAccept-Encoding: gzip, deflateHost: vm01win2k8r2Content-Length: 72Connection: Keep-AliveCache-Control: no-cacheCookie: JSESSIONID=f2c33c32b2d494a75b6299a55e6393b50caa9fca30997f9c4df044d461c38710.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57Authorization: Negotiate YIIF2gYGKwYBBQUCoIIFzjCCBcqgJDAiBgkqhkiC9xIBAgIGCSqGSIb3EgECAgYKKwYBBAGCNwICCqKCBaAEggWcYIIFmAYJKoZIhvcSAQICAQBuggWHMIIFg6ADAgEFoQMCAQ6iBwMFACAAAACjggSYYYIElDCCBJCgAwIBBaEQGw5ELUNJUkNMRS5MT0NBTKIuMCygAwIBAqElMCMbBEhUVFAbG3ZtMDF3aW4yazhyMi5kLWNpcmNsZS5sb2NhbKOCBEUwggRBoAMCARKhAwIBA6KCBDMEggQv1Yt4/5EIpc4FDP1kZEGwIDTQ0zQ4yFcEF0jRSAxZsw1YXM1h7OFQqTattTlhHmHKTNawTsLJY4ugo/LrzDovhhK/M9aCkeiIiI78d1AaW9wj1V3sYeBFM6ユ゙・、エM・とァ Nm繍ExE訓w[廏ルミ<ッ惺Bup8...

j_id5=j_id5&javax.faces.ViewState=_id24790&j_id5%3Aj_id25=j_id5%3Aj_id25

HTTP/1.1 302 Moved TemporarilyDate: Fri, 18 Feb 2011 06:51:59 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerSet-Cookie: JSESSIONID=f2c33c32b2d494a75b6299a55e6393b50caa9fca30997f9c4df044d461c38710.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7X-Powered-By: JSF/1.2Location: http://vm01win2k8r2/pe4j/login.jsfKeep-Alive: timeout=15, max=98Connection: Keep-AliveTransfer-Encoding: chunkedContent-Type: text/html; charset=ISO-8859-1
b7 <HTML><HEAD><TITLE>Redirect to http://vm01win2k8r2/pe4j/login.jsf</TITLE></HEAD><BODY><A HREF="http://vm01win2k8r2/pe4j/login.jsf">http://vm01win2k8r2/pe4j/login.jsf</A></BODY></HTML>0

...

 

***** access (IP) *****

GET /pe4j/winauth HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: 192.168.20.163Connection: Keep-Alive

HTTP/1.1 401 UnauthorizedDate: Fri, 18 Feb 2011 06:25:11 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerX-UA-Compatible: IE=EmulateIE7WWW-Authenticate: NegotiateWWW-Authenticate: NTLMWWW-Authenticate: Basic realm="BasicSecurityFilterProvider"Connection: keep-alive, Keep-AliveKeep-Alive: timeout=15, max=100Transfer-Encoding: chunkedContent-Type: text/html; charset="iso-8859-1"
5f <HTML><HEAD><TITLE>401 Unauthorized</TITLE></HEAD><BODY><H1>401 Unauthorized</H1></BODY></HTML>0

GET /pe4j/winauth HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: 192.168.20.163Connection: Keep-AliveAuthorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAHEXAAAADw==

HTTP/1.1 401 UnauthorizedDate: Fri, 18 Feb 2011 06:25:11 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerX-UA-Compatible: IE=EmulateIE7WWW-Authenticate: Negotiate TlRMTVNTUAACAAAAEAAQADgAAAAVgoni3UaX2Qla/3IAAAAAAAAAALoAugBIAAAABgGwHQAAAA9EAC0AQwBJAFIAQwBMAEUAAgAQAEQALQBDAEkAUgBDAEwARQABABgAVgBNADAAMQBXAEkATgAyAEsAOABSADIABAAcAGQALQBjAGkAcgBjAGwAZQAuAGwAbwBjAGEAbAADADYAVgBNADAAMQBXAEkATgAyAEsAOABSADIALgBkAC0AYwBpAHIAYwBsAGUALgBsAG8AYwBhAGwABQAcAGQALQBjAGkAcgBjAGwAZQAuAGwAbwBjAGEAbAAHAAgA6davmDTPywEAAAAAConnection: keep-alive, Keep-AliveKeep-Alive: timeout=15, max=99Transfer-Encoding: chunkedContent-Type: text/plain
0

GET /pe4j/winauth HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: 192.168.20.163Connection: Keep-AliveAuthorization: Negotiate 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

HTTP/1.1 302 Moved TemporarilyDate: Fri, 18 Feb 2011 06:25:11 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerContent-Location: http://192.168.20.163/pe4j/autoLogin.jsfSet-Cookie: JSESSIONID=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jSet-Cookie: peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57; Path=/X-UA-Compatible: IE=EmulateIE7X-Powered-By: JSF/1.2Location: http://192.168.20.163/pe4j/POT/POT0801f.jsf;jsessionid=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71152Keep-Alive: timeout=15, max=98Connection: Keep-AliveTransfer-Encoding: chunkedContent-Type: text/html
231<HTML><HEAD><TITLE>Redirect to http://192.168.20.163/pe4j/POT/POT0801f.jsf;jsessionid=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71152</TITLE></HEAD><BODY><A HREF="http://192.168.20.163/pe4j/POT/POT0801f.jsf;jsessionid=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71152">http://192.168.20.163/pe4j/POT/POT0801f.jsf;jsessionid=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71152</A></BODY></HTML>0

GET /pe4j/POT/POT0801f.jsf;jsessionid=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71152 HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: 192.168.20.163Connection: Keep-AliveCookie: JSESSIONID=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57

HTTP/1.1 200 OKDate: Fri, 18 Feb 2011 06:25:11 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerContent-Length: 818Set-Cookie: JSESSIONID=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7X-Powered-By: JSF/1.2Keep-Alive: timeout=15, max=97Connection: Keep-AliveContent-Type: text/html; charset=UTF-8
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Frameset//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-frameset.dtd" ><html xmlns="http://www.w3.org/1999/xhtml"> <head>      <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />      <meta http-equiv="Pragma" content="no-cache" />      <meta http-equiv="Cache-Control" content="no-cache" />      <link rel="stylesheet" type="text/css" href="/pe4j/css/portal.css" />  <title>ツ-ツPOWER EGG</title> </head> <frameset rows="80,*"> <frame id="menu" name="menu" title="menu" src="/pe4j/POT/POT0802d.jsf" frameborder="0" marginwidth="0" marginheight="0" scrolling="no" />   <frame id="content" name="content" title="content" src="/corpview/data/gurahu_f.html" frameborder="0" marginwidth="0" marginheight="0" scrolling="yes" /> </frameset></html>

GET /pe4j/POT/POT0802d.jsf HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Referer: http://192.168.20.163/pe4j/POT/POT0801f.jsf;jsessionid=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0?cid=71152Accept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: 192.168.20.163Connection: Keep-AliveCookie: JSESSIONID=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57

HTTP/1.1 200 OKDate: Fri, 18 Feb 2011 06:25:12 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerContent-Length: 6254Set-Cookie: JSESSIONID=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7X-Powered-By: JSF/1.2Expires: Fri, 18 Feb 2011 06:25:12 GMTPragma: no-cacheCache-Control: no-cacheKeep-Alive: timeout=15, max=96Connection: Keep-AliveContent-Type: text/html; charset=UTF-8
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd" ><!--    Process    : ポータル: コーポレートナビ    Document   : POT0802d--><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Pragma" content="no-cache" /><meta http-equiv="Cache-Control" content="no-cache" /><title>コーポレートナビツ-ツPOWER EGG</title><link rel="stylesheet" type="text/css" href="/pe4j/css/main.css" /><link rel="stylesheet" type="text/css" href="/pe4j/css/print.css" media="print" /><link rel="stylesheet" type="text/css" href="/pe4j/css/component.css" /><script type="text/javascript" charset="UTF-8" src="/pe4j/scripts/component.js"></script>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <link rel="stylesheet" type="text/css" href="/pe4j/css/main.css" /> <link rel="stylesheet" type="text/css" href="/pe4j/css/portal.css" /> <style type="text/css"> html,body { overflow-x: hidden !important; overflow-y: hidden !important; margin-top: 0px; padding-top: 0px; }
table { width: 100%; }
td.right { text-align: right; padding-right: 7px; }
.menu img { vertical-align: middle !important; }
.menu td { vertical-align: middle !important; }
div.breadcrumbs { height: 22px; padding: 7px 0px 0px 0px !important; margin: none !important; }
.paddingLeft { padding-left: 7px; }
.directMenuButton { width: 48px; height: 42px; }
.directMenuButton img { width: 48px; height: 42px; } </style><script type="text/javascript">//<![CDATA[document.onkeydown = function(evt) {  var event = (evt) ? evt : window.event;  if (event.keyCode == 8) {      var type;      var obj;      if (document.all) {          type = event.srcElement.type;          obj = event.srcElement;      } else {          type = event.target.type;          obj = event.target;      }      if (type != 'text' && type != 'textarea' && type != 'password') {          return false;      } else {          if (obj.readOnly == true || obj.readOnly == 'readonly') {              return false;          }      }  }}//]]></script></head><body onload="fncFocusToFirstInputElement();try{if(window.document.title){top.window.document.title = window.document.title;}}catch(e){}" onunload="javascript:if(typeof _underProcessing != 'undefined') {_underProcessing.close();}"><form id="j_id5" name="j_id5" method="post" action="/pe4j/POT/POT0802d.jsf" enctype="application/x-www-form-urlencoded"><input type="hidden" name="j_id5" value="j_id5" /><input type="hidden" name="javax.faces.ViewState" id="javax.faces.ViewState" value="_id24618" autocomplete="off" />
<table class="collapse-table-nopad" style="width: 100%;"> <tr class="menu"> <td style="width:110px"><div><script type="text/javascript" language="Javascript">function dpf(f) {var adp = f.adp;if (adp != null) {for (var i = 0;i < adp.length;i++) {f.removeChild(adp[i]);}}};function apf(f, pvp) {var adp = new Array();f.adp = adp;var i = 0;for (k in pvp) {var p = document.createElement("input");p.type = "hidden";p.name = k;p.value = pvp[k];f.appendChild(p);adp[i++] = p;}};function jsfcljs(f, pvp, t) {apf(f, pvp);var ft = f.target;if (t) {f.target = t;}f.submit();f.target = ft;dpf(f);};</script><a href="#" onclick="if(typeof jsfcljs == 'function'){jsfcljs(document.getElementById('j_id5'),{'j_id5:j_id8':'j_id5:j_id8'},'');}return false"><img src="/pe4j/img/naviview_perogo.gif" alt="コーポレートナビを更新" height="49" title="コーポレートナビを更新" width="110" /></a></div> </td> <td style="width:49px"><div style="height:49px;width:69px"></div> </td> <td style="width:10px"><div><img src="/pe4j/img/naviview_shadow.gif" height="49" width="10" /></div><div style="position:absolute;top:35px;left:27px;_left:23px;*left:24px;text-align:right;width:6em;"><span style="color:#02025c;">Ver.2.2</span></div> </td> <td><div>Nguyen Hoang Trong Duyツさんがログイン中...ツ<a href="#" onclick="if(typeof jsfcljs == 'function'){jsfcljs(document.getElementById('j_id5'),{'j_id5:j_id25':'j_id5:j_id25'},'_parent');}return false" class="noline">ログアウト</a> <iframe src="/pe4j/servlet/SessionKeeper" style="width:1px;height:1px;display:none"></iframe></div> </td> </tr> </table> <table class="collapse-table-nopad breadcrumbs" style="width:100%"> <tr style="background-image: url('../img/breadcrumbs_bg.gif')"> <td><div style="margin-top:5px"> ツ<a href="/pe4j/POT/POT0802d.jsf?cid=71153&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toStartUpNavi" id="j_id5:j_id30" target="_parent"><img src="/pe4j/img/menu_startup.gif" alt="スタートアップナビを表示" style="height:19px;width:94px;" title="スタートアップナビを表示" /></a><a href="/pe4j/POT/POT0802d.jsf?cid=71153&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toCorpNavi" id="j_id5:j_id32" target="_parent"><img src="/pe4j/img/menu_corp_o.gif" alt="コーポレートナビを表示" style="height:19px;width:86px;margin-left:5px;" title="コーポレートナビを表示" /></a><a href="/pe4j/POT/POT0802d.jsf?cid=71153&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toNaviView" id="j_id5:j_id34" target="_parent"><img src="/pe4j/img/menu_navi.gif" alt="ナビビューを表示" style="height:19px;width:69px;margin-left:5px;" title="ナビビューを表示" /></a></div> </td> </tr> </table></form><script type="text/javascript">function createXMLHttpRequest99() {  if (window.XMLHttpRequest) {    return new XMLHttpRequest();  } else if (window.ActiveXObject) {    try {      return new ActiveXObject('Msxml2.XMLHTTP');    } catch (e) {      return new ActiveXObject('Microsoft.XMLHTTP');    }  } else {    return false;  }}function keepConversation () {var request = createXMLHttpRequest99();var url='/pe4j/keepConversation.jsf?cccid=71153';try {request.open('GET', url, false);if (/*@cc_on!@*/false) { request.send(null); } else {request.send(''); }} catch(e) {}}setInterval(keepConversation, 300000);</script></body></html>

GET /pe4j/servlet/SessionKeeper HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Referer: http://192.168.20.163/pe4j/POT/POT0802d.jsfAccept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: 192.168.20.163Connection: Keep-AliveCookie: JSESSIONID=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57

HTTP/1.1 200 OKDate: Fri, 18 Feb 2011 06:25:12 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerSet-Cookie: JSESSIONID=6a44cc51ab58ce5326097f2cb189115b5b0d72d22a01edf19f4aa1f6a8bbfd0f.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7Keep-Alive: timeout=15, max=95Connection: Keep-AliveTransfer-Encoding: chunkedContent-Type: text/html; charset=Shift_JIS
c1 <html><head><title>Session Keep Main Page</title></head><body><p>This page is session keeping main page.</p><iframe width="100%" height="50" src="SessionKeeper?self=1"></iframe></body></html>
0

 

***** link click (IP) *****

POST /pe4j/POT/POT0802d.jsf HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Referer: http://192.168.20.163/pe4j/POT/POT0802d.jsfAccept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Content-Type: application/x-www-form-urlencodedAccept-Encoding: gzip, deflateHost: 192.168.20.163Content-Length: 0Connection: Keep-AliveCache-Control: no-cacheCookie: JSESSIONID=ae80dcdc0e74dfda6b1beecf7a6d8a1f87cb17c4397af90481ae499db2d361fb.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57Authorization: Negotiate TlRMTVNTUAABAAAAl4II4gAAAAAAAAAAAAAAAAAAAAAGAHEXAAAADw==

HTTP/1.1 200 OKDate: Fri, 18 Feb 2011 06:54:27 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerContent-Length: 6254Set-Cookie: JSESSIONID=ae80dcdc0e74dfda6b1beecf7a6d8a1f87cb17c4397af90481ae499db2d361fb.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7X-Powered-By: JSF/1.2Expires: Fri, 18 Feb 2011 06:54:27 GMTPragma: no-cacheCache-Control: no-cacheKeep-Alive: timeout=15, max=94Connection: Keep-AliveContent-Type: text/html; charset=UTF-8
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd" ><!--    Process    : ポータル: コーポレートナビ    Document   : POT0802d--><html xmlns="http://www.w3.org/1999/xhtml"><head><meta http-equiv="Pragma" content="no-cache" /><meta http-equiv="Cache-Control" content="no-cache" /><title>コーポレートナビツ-ツPOWER EGG</title><link rel="stylesheet" type="text/css" href="/pe4j/css/main.css" /><link rel="stylesheet" type="text/css" href="/pe4j/css/print.css" media="print" /><link rel="stylesheet" type="text/css" href="/pe4j/css/component.css" /><script type="text/javascript" charset="UTF-8" src="/pe4j/scripts/component.js"></script>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <link rel="stylesheet" type="text/css" href="/pe4j/css/main.css" /> <link rel="stylesheet" type="text/css" href="/pe4j/css/portal.css" /> <style type="text/css"> html,body { overflow-x: hidden !important; overflow-y: hidden !important; margin-top: 0px; padding-top: 0px; }
table { width: 100%; }
td.right { text-align: right; padding-right: 7px; }
.menu img { vertical-align: middle !important; }
.menu td { vertical-align: middle !important; }
div.breadcrumbs { height: 22px; padding: 7px 0px 0px 0px !important; margin: none !important; }
.paddingLeft { padding-left: 7px; }
.directMenuButton { width: 48px; height: 42px; }
.directMenuButton img { width: 48px; height: 42px; } </style><script type="text/javascript">//<![CDATA[document.onkeydown = function(evt) {  var event = (evt) ? evt : window.event;  if (event.keyCode == 8) {      var type;      var obj;      if (document.all) {          type = event.srcElement.type;          obj = event.srcElement;      } else {          type = event.target.type;          obj = event.target;      }      if (type != 'text' && type != 'textarea' && type != 'password') {          return false;      } else {          if (obj.readOnly == true || obj.readOnly == 'readonly') {              return false;          }      }  }}//]]></script></head><body onload="fncFocusToFirstInputElement();try{if(window.document.title){top.window.document.title = window.document.title;}}catch(e){}" onunload="javascript:if(typeof _underProcessing != 'undefined') {_underProcessing.close();}"><form id="j_id5" name="j_id5" method="post" action="/pe4j/POT/POT0802d.jsf" enctype="application/x-www-form-urlencoded"><input type="hidden" name="j_id5" value="j_id5" /><input type="hidden" name="javax.faces.ViewState" id="javax.faces.ViewState" value="_id24805" autocomplete="off" />
<table class="collapse-table-nopad" style="width: 100%;"> <tr class="menu"> <td style="width:110px"><div><script type="text/javascript" language="Javascript">function dpf(f) {var adp = f.adp;if (adp != null) {for (var i = 0;i < adp.length;i++) {f.removeChild(adp[i]);}}};function apf(f, pvp) {var adp = new Array();f.adp = adp;var i = 0;for (k in pvp) {var p = document.createElement("input");p.type = "hidden";p.name = k;p.value = pvp[k];f.appendChild(p);adp[i++] = p;}};function jsfcljs(f, pvp, t) {apf(f, pvp);var ft = f.target;if (t) {f.target = t;}f.submit();f.target = ft;dpf(f);};</script><a href="#" onclick="if(typeof jsfcljs == 'function'){jsfcljs(document.getElementById('j_id5'),{'j_id5:j_id8':'j_id5:j_id8'},'');}return false"><img src="/pe4j/img/naviview_perogo.gif" alt="コーポレートナビを更新" height="49" title="コーポレートナビを更新" width="110" /></a></div> </td> <td style="width:49px"><div style="height:49px;width:69px"></div> </td> <td style="width:10px"><div><img src="/pe4j/img/naviview_shadow.gif" height="49" width="10" /></div><div style="position:absolute;top:35px;left:27px;_left:23px;*left:24px;text-align:right;width:6em;"><span style="color:#02025c;">Ver.2.2</span></div> </td> <td><div>Nguyen Hoang Trong Duyツさんがログイン中...ツ<a href="#" onclick="if(typeof jsfcljs == 'function'){jsfcljs(document.getElementById('j_id5'),{'j_id5:j_id25':'j_id5:j_id25'},'_parent');}return false" class="noline">ログアウト</a> <iframe src="/pe4j/servlet/SessionKeeper" style="width:1px;height:1px;display:none"></iframe></div> </td> </tr> </table> <table class="collapse-table-nopad breadcrumbs" style="width:100%"> <tr style="background-image: url('../img/breadcrumbs_bg.gif')"> <td><div style="margin-top:5px"> ツ<a href="/pe4j/POT/POT0802d.jsf?cid=71789&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toStartUpNavi" id="j_id5:j_id30" target="_parent"><img src="/pe4j/img/menu_startup.gif" alt="スタートアップナビを表示" style="height:19px;width:94px;" title="スタートアップナビを表示" /></a><a href="/pe4j/POT/POT0802d.jsf?cid=71789&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toCorpNavi" id="j_id5:j_id32" target="_parent"><img src="/pe4j/img/menu_corp_o.gif" alt="コーポレートナビを表示" style="height:19px;width:86px;margin-left:5px;" title="コーポレートナビを表示" /></a><a href="/pe4j/POT/POT0802d.jsf?cid=71789&amp;actionMethod=POT%2FPOT0802d.xhtml%3APOT08Bean.toNaviView" id="j_id5:j_id34" target="_parent"><img src="/pe4j/img/menu_navi.gif" alt="ナビビューを表示" style="height:19px;width:69px;margin-left:5px;" title="ナビビューを表示" /></a></div> </td> </tr> </table></form><script type="text/javascript">function createXMLHttpRequest99() {  if (window.XMLHttpRequest) {    return new XMLHttpRequest();  } else if (window.ActiveXObject) {    try {      return new ActiveXObject('Msxml2.XMLHTTP');    } catch (e) {      return new ActiveXObject('Microsoft.XMLHTTP');    }  } else {    return false;  }}function keepConversation () {var request = createXMLHttpRequest99();var url='/pe4j/keepConversation.jsf?cccid=71789';try {request.open('GET', url, false);if (/*@cc_on!@*/false) { request.send(null); } else {request.send(''); }} catch(e) {}}setInterval(keepConversation, 300000);</script></body></html>GET /pe4j/servlet/SessionKeeper?self=1 HTTP/1.1Accept: image/gif, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-shockwave-flash, */*Referer: http://192.168.20.163/pe4j/servlet/SessionKeeperAccept-Language: jaUser-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)Accept-Encoding: gzip, deflateHost: 192.168.20.163Connection: Keep-AliveCookie: JSESSIONID=ae80dcdc0e74dfda6b1beecf7a6d8a1f87cb17c4397af90481ae499db2d361fb.e38LbNePa38Pc40LaNqSb3uPbxqOe0; peuser=cCorpId=1000000000&cDivId=3&cEmpId=1243&cUserId=duynht&cUserName=Nguyen+Hoang+Trong+Duy&cDivName=%8B%5A%8F%70%95%94&cEmpId1=&cEmpId2=&cDivId1=0000000020&cDivId2=2000000000&cTitleClass=13&cTitleName=%8C%57
HTTP/1.1 200 OKDate: Fri, 18 Feb 2011 06:54:27 GMTServer: Oracle-Application-Server-10g/10.1.3.5.0 Oracle-HTTP-ServerSet-Cookie: JSESSIONID=ae80dcdc0e74dfda6b1beecf7a6d8a1f87cb17c4397af90481ae499db2d361fb.e38LbNePa38Pc40LaNqSb3uPbxqOe0; path=/pe4jX-UA-Compatible: IE=EmulateIE7Keep-Alive: timeout=15, max=93Connection: Keep-AliveTransfer-Encoding: chunkedContent-Type: text/html; charset=Shift_JIS
64 <HTML><HEAD><META http-equiv="refresh" content="600"></HEAD><BODY>Session Keeping...</BODY></HTML>
0

 

(I'm using Wireshark and very sorry for the encoding)

I have spent two days tracking & debugging but still not found out the reason yet.

Any recommendation will be appreciated and if you need any information or a better log format please let me know.

Coordinator
Feb 20, 2011 at 5:05 PM

I think your problem (or at least part of it) is described here.

Due to the nature of the NTLM protocol, the browser will first POST a zero-length message and will require re-authentication. Your redirect scheme needs to handle that.

Feb 21, 2011 at 1:31 AM

Thank you for your explanation!

As I'm understanding now, the reason why my next request containing no body is due to NTLM mechanism, is that right?

So I changed from my one-time-servlet-authentication to your default NegotiateSecurityFilter.

It worked great with normal links, but, for asynchronous requests (SeamRemoting in my case), it failed.

 

***** These are all packets I could get using IeHTTPHeaders *****

 

POST /pe4j/scripts/seam/resource/remoting/execute HTTP/1.1

Accept: */*

Accept-Language: ja

Connection: Close

Referer: http://localhost:8080/pe4j/NNV/NNV0302l.jsf?order=2

Accept-Encoding: gzip, deflate

User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.0; Trident/4.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30618)

Host: localhost:8080

Cache-Control: no-cache

Cookie: JSESSIONID=5e2f11fcd1dfd04a9de40f569023; peuser=cCorpId=nakayoshi&cDivId=15&cEmpId=2057&cUserId=duynht&cUserName=%82%E4%82%A2&cDivName=%95%94%96%E5%82%51&cEmpId1=&cEmpId2=&cDivId1=naka-bu2&cDivId2=&cTitleClass=10&cTitleName=%82%C8%82%B5

Authorization: Negotiate TlRMTVNTUAABAAAAl7II4ggACAAuAAAABgAGACgAAAAGAHEXAAAAD0RVWS1QQ0QtQ0lSQ0xFContent-Length: 0


HTTP/1.1 401 Unauthorized

X-Powered-By: Servlet/2.5

Server: Sun Java System Application Server 9.1_01

X-UA-Compatible: IE=EmulateIE7

WWW-Authenticate: Negotiate TlRMTVNTUAACAAAAEAAQADgAAAAVwoniIQCJU1F3qaFY2SsCAAAAAKIAogBIAAAABgBxFwAAAA9EAC0AQwBJAFIAQwBMAEUAAgAQAEQALQBDAEkAUgBDAEwARQABAAwARABVAFkALQBQAEMABAAcAGQALQBjAGkAcgBjAGwAZQAuAGwAbwBjAGEAbAADACoAZAB1AHkALQBwAGMALgBkAC0AYwBpAHIAYwBsAGUALgBsAG8AYwBhAGwABQAcAGQALQBjAGkAcgBjAGwAZQAuAGwAbwBjAGEAbAAHAAgANwnctmvRywEAAAAA

Connection: close

Content-Type: text/html; charset=iso-8859-1

Date: Mon, 21 Feb 2011 02:04:46 GMT

 

(This time I'm testing on my localhost[vista-IE8], it seems to work fine with Chrome)

Would you suggest me with some solution please?

Coordinator
Feb 21, 2011 at 1:20 PM

The problem is that there's no such mechanism as the "Kerberos" protocol for authentication. You could tell the browser to do Kerberos, but 9/10 will not work. Negotiate = Kerberos or NTLM, whichever one the *browser* wants to do - the server can't force it. So it works only when Kerberos is chosen, but in your case here the protocol defaults to NTLM again. There're hundreds of reasons why it does that, but it's also possible that there's just no way you can change it.

The right solution is to fix the SEAM resource. Instead of doing redirections all your GETs and POSTs should go through a Waffle filter. Waffle will know what to do and when and explicitly supports this case. What should happen after a POST /pe4j/scripts/seam/resource/remoting/execute with a 0-length Content-length is a 401 response that the browser will handle correctly resending a new NTLM ticket with actual data this time. The SEAM thing won't even notice.

Feb 22, 2011 at 1:38 AM

Thanks for the replies.

 

Actually, since knowing about NTLM's connection-oriented, I have been using Waffle filter to handle all the requests in SEAM as you recommended above but still failed in asynchronous requesting.

I think I have figured out the reason:

It was doing an asynchronous request with the close connection header on NTLM flow, and as mentioned in NTLM RFC:

 

The client resubmits the request with an "Authorization" header containing a Type 1 message parameter.

The Type 1 message is Base-64 encoded for transmission.

From this point forward, the connection is kept open; closing the connection requires reauthentication of subsequent requests.

This implies that the server and client must support persistent connections,

via either the HTTP 1.0-style "Keep-Alive" header or HTTP 1.1 (in which persistent connections are employed by default)

 

And I guess that's why I couldn't receive the following Type2Message.

Setting keep-alive to the request header solved that problem.

 

Thank you for your consideration.

Feb 22, 2011 at 7:32 AM

One more thing I wish to know,

is it possible for us to know whether the browser is using Kerberos or NTLM for authentication from the server side

(e.g while authenticating by Waffle filter)?

Coordinator
Feb 22, 2011 at 12:33 PM

Glad you resolve the problem. Makes total sense.

There's a feature request for tracing which protocol is being used (http://waffle.codeplex.com/workitem/10006). It wouldn't be too much work, but someone has to do it ;)