登录期间设置了域转发时出现HTTP状态408错误 [英] HTTP Status 408 error during login with domain forwarding set up

问题描述

在我的网站wemanageloans.com上，许多用户在尝试使用正确的凭据登录时收到以下错误：

On my site wemanageloans.com, many of the users are getting the following error when they try to login with the correct credentials:

HTTP状态408 - 时间已超出允许登录过程。如果您希望继续，则必须再次单击两次并重新单击您请求的链接或关闭并重新打开浏览器

HTTP Status 408 - The time allowed for the login process has been exceeded. If you wish to continue you must either click back twice and re-click the link you requested or close and re-open your browser

仅当他们尝试登录时才会发生这种情况来自网址：
http://www.wemanageloans.com

This happens only if they try to login from URL: http://www.wemanageloans.com

我已将域转发设置为URL：
http://59.176.19.181： 8080

I have set up domain forwarding to URL: http://59.176.19.181:8080

如果用户尝试直接访问上述基于IP地址的URL，则不会发生此错误。

This error does not happen if the user tries to access the above IP address based URL directly.

此外，虽然某些用户会一直发生此错误，但某些用户会间歇性地发生此错误。

Also, while this error occurs all the time for some users, it does happen intermittently to some users.

请告知可能出现的问题域转发以及我可能需要配置的内容。

Please advise as to what could be wrong with the domain forwarding and what I may need to configure on my side.

我正在使用Tomcat 6'身份验证 j_security_check 。

I am using Tomcat 6' authentication using j_security_check.

推荐答案

当我访问我看过的网站时帽子会话cookie没有立即设置 - 即使在第一次登录尝试后也没有。

When I visited the site I've seen that the session cookie was not immediately set - not even after the first login attempt.

我认为会话开始时出现问题。

I guess that there's something wrong with the start of a session.

由于转发是通过掩盖您网站的框架完成的，我建议停止这一点：它会混淆相当多的情况。要么获得正确的DNS解析，使用mod_jk或类似的方式通过apache提供tomcat内容，或者只是重定向人员直接使用IP。这很可能会解决你的问题（在这种情况下我从未见过它们）。如果直接使用IP，则会产生难看的URL，因此正确的DNS解析应该是您的目标。

As "forwarding" is done through a frame that masks your site, I'd suggest to stop this: it obfuscates quite a bit of what happens. Either get correct DNS resolution, use mod_jk or similar to serve tomcat content through apache or just redirect people to directly use the IP. This will most likely get rid of your problems (I've never seen them in this scenario). In case of using the IP directly it results in an ugly URL, so correct DNS resolution should be what you aim for.

编辑：不知道你是否已经这样做了：请记住 - 使用j_security_check - 你不能只提供登录形式给用户但需要依靠tomcat来呈现它（AFAIK）。因此，您的页面 http://59.176.19.181:8080/personalcredit/loans.htm （这是显示的第一页）不应该在其上有登录表单，而是必须将页面声明为protected，以便tomcat本身向用户提供已配置的登录页面。如果loan.htm没有被声明保护，那么tomcat没有理由开始一个新的会话来解释观察到的行为。

Don't know if you already do this: Keep in mind that - using j_security_check - you can't just provide the login form to the user but need to rely on tomcat to present it (AFAIK). Therefor your page http://59.176.19.181:8080/personalcredit/loans.htm (which is the first page shown) is not supposed to have the login form on it, instead the page has to be declared as protected, so that tomcat by itself provides the configured login page to the user. If loans.htm was not declared protected, there was no reason for tomcat to start a new session which would explain the observed behaviour.

虽然它不能解释非确定性。

It wouldn't explain the nondeterminism though.

这篇关于登录期间设置了域转发时出现HTTP状态408错误的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！