Hi Teppo,
Please use the Network tab of the debugger to capture the request and
response headers for:
1. the POST of j_spring_security_check (that is the login)
2. the GET of hhMobileService.json
and post them to this thread.
=>
All request headers after pressing login button (they are 6 and 2 last are
repeated: first with success then with failure):
Host: 88.113.172.165:8810
Proxy-Connection: keep-alive
Access-Control-Request-Method: GET
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML,
like Gecko) Chrome/49.0.2623.112 Safari/537.36
Access-Control-Request-Headers: accept, cache-control, pragma
Accept: */*
Accept-Encoding: gzip, deflate, sdch
Accept-Language: fi-FI,fi;q=0.8,en-US;q=0.6,en;q=0.4
Host: 88.113.172.165:8810
Proxy-Connection: keep-alive
Pragma: no-cache
Accept:
application/json,text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML,
like Gecko) Chrome/49.0.2623.112 Safari/537.36
Accept-Encoding: gzip, deflate, sdch
Accept-Language: fi-FI,fi;q=0.8,en-US;q=0.6,en;q=0.4
Cookie:
JSESSIONID=885EF110001C16D66D6D5F485D74B6D464CC0D23490C.oepas1
Host: 88.113.172.165:8810
Proxy-Connection: keep-alive
Access-Control-Request-Method: GET
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML,
like Gecko) Chrome/49.0.2623.112 Safari/537.36
Access-Control-Request-Headers: accept, cache-control, pragma
Accept: */*
Accept-Encoding: gzip, deflate, sdch
Accept-Language: fi-FI,fi;q=0.8,en-US;q=0.6,en;q=0.4
Host: 88.113.172.165:8810
Proxy-Connection: keep-alive
Access-Control-Request-Method: GET
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML,
like Gecko) Chrome/49.0.2623.112 Safari/537.36
Access-Control-Request-Headers: accept, cache-control, pragma
Accept: */*
Accept-Encoding: gzip, deflate, sdch
Accept-Language: fi-FI,fi;q=0.8,en-US;q=0.6,en;q=0.4
Host: 88.113.172.165:8810
Proxy-Connection: keep-alive
Pragma: no-cache
Accept:
application/json,text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML,
like Gecko) Chrome/49.0.2623.112 Safari/537.36
Accept-Encoding: gzip, deflate, sdch
Accept-Language: fi-FI,fi;q=0.8,en-US;q=0.6,en;q=0.4
Cookie:
JSESSIONID=885EF110001C16D66D6D5F485D74B6D464CC0D23490C.oepas1
Host: 88.113.172.165:8810
Proxy-Connection: keep-alive
Pragma: no-cache
Accept: application/json
Cache-Control: no-cache
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML,
like Gecko) Chrome/49.0.2623.112 Safari/537.36
Accept-Encoding: gzip, deflate, sdch
Accept-Language: fi-FI,fi;q=0.8,en-US;q=0.6,en;q=0.4
Cookie:
JSESSIONID=885EF110001C16D66D6D5F485D74B6D464CC0D23490C.oepas1
Response headers (same six):
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: DELETE, POST, GET, OPTIONS, PUT
Access-Control-Allow-Headers: Access-Control-Request-Headers,
Accept-Language, Content-Language, Authorization, Origin,
Access-Control-Request-Method, Content-Type, Accept, X-Client-Context-Id,
Cache-Control, Pragma
Content-Length: 0
Date: Thu, 14 Apr 2016 12:25:06 GMT
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: Content-Language, Expires, Last-Modified,
Content-Type, X-Client-Context-Id, Pragma, Cache-Control
Accept-Ranges: bytes
ETag: W/"35-1460032024000"
Last-Modified: Thu, 07 Apr 2016 12:27:04 GMT
Content-Type: text/html
Content-Length: 35
Date: Thu, 14 Apr 2016 12:25:06 GMT
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: DELETE, POST, GET, OPTIONS, PUT
Access-Control-Allow-Headers: Access-Control-Request-Headers,
Accept-Language, Content-Language, Authorization, Origin,
Access-Control-Request-Method, Content-Type, Accept, X-Client-Context-Id,
Cache-Control, Pragma
Content-Length: 0
Date: Thu, 14 Apr 2016 12:25:06 GMT
HTTP/1.1 200 OK
Server: Apache-Coyote/1.1
Access-Control-Allow-Credentials: true
Access-Control-Allow-Methods: DELETE, POST, GET, OPTIONS, PUT
Access-Control-Allow-Headers: Access-Control-Request-Headers,
Accept-Language, Content-Language, Authorization, Origin,
Access-Control-Request-Method, Content-Type, Accept, X-Client-Context-Id,
Cache-Control, Pragma
Content-Length: 0
Date: Thu, 14 Apr 2016 12:25:06 GMT
HTTP/1.1 401 Unauthorized
Server: Apache-Coyote/1.1
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: Content-Language, Expires, Last-Modified,
Content-Type, X-Client-Context-Id, Pragma, Cache-Control
Content-Type: application/json.*;charset=ISO-8859-1
Content-Length: 57
Date: Thu, 14 Apr 2016 12:25:06 GMT
HTTP/1.1 401 Unauthorized
Server: Apache-Coyote/1.1
Access-Control-Allow-Credentials: true
Access-Control-Expose-Headers: Content-Language, Expires, Last-Modified,
Content-Type, X-Client-Context-Id, Pragma, Cache-Control
Content-Type: application/json.*;charset=ISO-8859-1
Content-Length: 57
Date: Thu, 14 Apr 2016 12:25:06 GMT
----
You can get the headers by:
1. right-click on the j_spring_security_check request and choose "Copy
request headers"
2. paste that
3. right click again and choose "Copy response headers" and paste that.
4. Repeat the above for the GET of the catalog.
Alternatively, you could use Fiddler to save the network traffic to a .saz
file and attach that.
=> teppo.saz included.
Regards,
--Wayne
=>
Regards
- teppo
---------------------------|--------------------
Teppo
Määttänen____| TR-Tiimi Oy
Consultant_________| Struerintie 1
teppo @
trtiimi.fi____| 30100 FORSSA
int-358-50-5748 226 |
www.trtiimi.fi
---------------------------|--------------------