@brady, I think some output is missing in this snippet. When I hit our download server with that command I receive the following:
$ curl -k -v https://download.icgc.org/srv-info/health
* Hostname was NOT found in DNS cache
* Trying 206.108.121.80...
* Connected to download.icgc.org (206.108.121.80) port 443 (#0)
* successfully set certificate verify locations:
* CAfile: none
CApath: /etc/ssl/certs
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using TLSv1.2 / ECDHE-RSA-DES-CBC3-SHA
* Server certificate:
* subject: OU=Domain Control Validated; CN=*.icgc.org
* start date: 2014-10-01 16:50:33 GMT
* expire date: 2016-10-01 16:50:33 GMT
* issuer: C=US; ST=Arizona; L=Scottsdale; O=GoDaddy.com, Inc.; OU=http://certs.godaddy.com/repository/; CN=Go Daddy Secure Certificate Authority - G2
* SSL certificate verify result: unable to get local issuer certificate (20), continuing anyway.
> GET /srv-info/health HTTP/1.1
> User-Agent: curl/7.38.0
> Host: download.icgc.org
> Accept: */*
>
< HTTP/1.1 401 Unauthorized
* Server Apache-Coyote/1.1 is not blacklisted
< Server: Apache-Coyote/1.1
< X-Content-Type-Options: nosniff
< X-XSS-Protection: 1; mode=block
< Cache-Control: no-cache, no-store, max-age=0, must-revalidate
< Pragma: no-cache
< Expires: 0
< Strict-Transport-Security: max-age=31536000 ; includeSubDomains
< X-Frame-Options: DENY
< Set-Cookie: JSESSIONID=70BED92E4F4C5C6CFC44553991231E93; Path=/; Secure; HttpOnly
< WWW-Authenticate: Basic realm="Realm"
< Content-Type: application/json;charset=UTF-8
< Transfer-Encoding: chunked
< Vary: Accept-Encoding
< Date: Thu, 15 Sep 2016 15:50:26 GMT
<
* Connection #0 to host download.icgc.org left intact
{"timestamp":1473954626057,"status":401,"error":"Unauthorized","message":"Full authentication is required to access this resource","path":"/srv-info/health"}
Unfortunately, I can not identify an issue when I do not have enough information.
From what I understood so far, you should update portal server configuration and set https
in the download server url.