Page MenuHomePhabricator
Create Task
Maniphest T75510

Role https does not properly set $wgServer
Closed, ResolvedPublic
Actions

Description

Symptom: With a fresh MediaWiki-Vagrant with the https role, the resources (JS+CSS) are not loaded over HTTPS because the $wgServer variable is set to WebRequest::detectServer() in /vagrant/settings.d/wiki/CommonSettings.php (see bug 66399).

Explaination: The HTTPS is performed using nginx as a reverse proxy, and the function WebRequest::detectServer() assume in this case the HTTPS port is standard (443) instead of 4430 in MediaWiki-Vagrant ($wgServer = 'https://127.0.0.1').

Version: unspecified
Severity: normal
See Also:
https://bugzilla.wikimedia.org/show_bug.cgi?id=70964

Details

Reference
bz73510
SubjectRepoBranchLines +/-
HTTPS role should set wgAssumeProxiesUseDefaultProtocolPorts to falsemediawiki/vagrantmaster+7 -1
Make proxy behaviour of detectServer() configurablemediawiki/coremaster+13 -1
Customize query in gerrit

Related Objects

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 22 2014, 3:48 AM
bzimport added a project: MediaWiki-Vagrant.
bzimport set Reference to bz73510.
bzimport added a subscriber: Unknown Object (MLST).
Seb35 created this task.Nov 17 2014, 10:00 AM
Seb35 added a comment.Nov 17 2014, 10:16 AM

It could be used the config variable $wgHttpsPort introduced in bug 65184: in WebRequest::detectServer(), in the case of HTTPS behind a reverse proxy, use $wgHttpsPort (default is obviously 443).

This solution should be double-checked since it would impact Wikimedia servers.

bd808 renamed this task from HTTPS port is incorrect to Role https does not properly set $wgServer.Dec 30 2014, 5:31 PM
bd808 lowered the priority of this task from Medium to Low.
bd808 set Security to None.
yuvipanda unsubscribed.Jan 12 2015, 11:59 AM
Gilles raised the priority of this task from Low to Medium.Jun 22 2015, 6:40 PM
Gilles subscribed.

Given that we're now all https and all, it seems like our https role should work!

Gilles claimed this task.Jun 22 2015, 6:44 PM
gerritbot subscribed.Jun 22 2015, 6:59 PM

Change 219901 had a related patch set uploaded (by Gilles):
Make proxy behaviour of detectServer() configurable

https://gerrit.wikimedia.org/r/219901

gerritbot added a project: Patch-For-Review.Jun 22 2015, 6:59 PM
gerritbot added a comment.Jun 22 2015, 10:00 PM

Change 219901 merged by jenkins-bot:
Make proxy behaviour of detectServer() configurable

https://gerrit.wikimedia.org/r/219901

Gilles mentioned this in rMWb27682980670: Make proxy behaviour of detectServer() configurable.Jun 22 2015, 10:00 PM
Forrestbot added projects: WMF-deploy-2015-06-23_(1.26wmf11), MW-1.26-release.Jun 22 2015, 11:00 PM
Forrestbot subscribed.
gerritbot added a comment.Jun 23 2015, 6:37 AM

Change 220074 had a related patch set uploaded (by Gilles):
HTTPS role should set wgAssumeProxiesUseDefaultProtocolPorts to false

https://gerrit.wikimedia.org/r/220074

gerritbot added a comment.Jun 23 2015, 8:55 PM

Change 220074 merged by jenkins-bot:
HTTPS role should set wgAssumeProxiesUseDefaultProtocolPorts to false

https://gerrit.wikimedia.org/r/220074

Gilles mentioned this in rMWVA4eeaee08f876: HTTPS role should set wgAssumeProxiesUseDefaultProtocolPorts to false.Jun 23 2015, 8:56 PM
Gilles closed this task as Resolved.Jun 24 2015, 3:15 PM

A stock vagrant VM should now have its https role work out of the box.

Legoktm removed a subscriber: Forrestbot.Jun 29 2015, 5:50 PM
Tgr subscribed.Aug 30 2015, 8:26 AM

It only seems to work through the host machine port forward though, not when one vagrant box is connecting to the other.

Tgr mentioned this in T110853: MediaWiki-Vagrant https role does not work with guest machine IP .Aug 31 2015, 12:56 AM
bd808 moved this task from Backlog to Done on the MediaWiki-Vagrant board.Dec 7 2015, 12:52 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL