Hello,


I am trying to configure xrootd to use macaroons as the bearer token for TPC over https and place the server behind a redirector. The configuration I have works so far with TPC over https with no redirector and TPClite over the root protocol with delegated credentials.


When I try to do TPC through a redirector node with bearer tokens I get an error saying that the token was redirected and now for the wrong server.


The error I get from gfal is:

TRANSFER ERROR: Copy failed (3rd push). Last attempt: Transfer failure: rejected PUT: 403 Forbidden; redirections


And in the log I get:

macarons_Access: Macaroon is for incorrect location elephant108.heprc.uvic.ca


The ofs configuration reference says that this would happen when redirecting to an xrootd instance that isn't on the same machine and suggests using ofs.tpc redirect to redirect the TPC request. I've tried using that directive and specifying a server to redirect to but this doesn't fix the issue.


The documentation also suggests that I can provide more cgi information to the url to open the file at the redirection target but I'm not sure what to do with that.


Has anyone gotten this to work and are there any resources on how to do this?


I've attached the redirector's configuration.


Thanks


Use REPLY-ALL to reply to list

To unsubscribe from the XROOTD-L list, click the following link:
https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-L&A=1