[BlueOnyx:08078] Re: Admin GUI via IPAD QUICK FIX?

[Michael Stauber]

Hi Stephanie,

> I just got through testing my version of what you did. You are correct that
> removing the actions removes the issue. However, it's just the onresize
> action that is causing the problem. I must admit I rather like
> automagically setting the cursor to the login form field when the page
> loads. It's kind of the point of a login page. So the onload action isn't
> causing a problem and can remain.

Many thanks, Stephanie. I just released the revised login.php page that you 
submitted. I just had to remove the first line of it, as the presence of it 
doesn't allows us to redirect to other pages, as the header has already been 
sent out.

> There is another issue with the admserv that showed up during testing with
> the droid. If there is a chained certificate like RapidSSL installed on the
> admserv and intermediate certificates are needed the gui allows one to add
> them in. So far so good. But wait, there's more. The droid reports the
> certificate isn't from a trusted authority. (this is using the default
> safari mobile browser on a droid2)
> 
> The intermediate CA certificates are correctly added to the file
> /etc/admserv/certs/ca-certs
> 
> OK then why the error? Ha! The directive
> SSLCACertificateFile /etc/admserv/certs/ca-certs
> 
> Appears in /etc/admserv/conf/ssl.conf but this NEVER gets loaded by the
> admserv httpd.conf
> 
> More important it isn't in the /etc/admserv/conf.d/ssl.conf either.

That is actually a really nice catch. After some poking around I found out 
that this bug has been around for ages. It's even been present in the original 
BlueQuartz code for like eight years. The handler which is supposed to add or 
remove the  SSLCACertificateFile line is looking for mod_ssl.conf in the wrong 
place. 

I just published an update for that as well.

-- 
With best regards

Michael Stauber