Try to reverse-proxy vsphere webclient with ApacheProtocol switching with reverse proxy and application server with static linksVmware credential errors with zabbix checkApache reverse proxy location based access control not workingApache Reverse Proxy with Wildfly?Apache - puma reverse proxy failingBasic auth Apache with TomcatWhat is wrong with my nginx reverse proxy configuration, with single server (and more later)Setting up an Apache forward proxy with 2-way SSL with certificate CN check failsApache reverse proxy with ssl not workingOffice365 SSO with JumpCloud SAML

I probably found a bug with the sudo apt install function

Can a German sentence have two subjects?

A function which translates a sentence to title-case

Validation accuracy vs Testing accuracy

Is it possible to do 50 km distance without any previous training?

Possibly bubble sort algorithm

I see my dog run

Circuitry of TV splitters

How much RAM could one put in a typical 80386 setup?

Can an x86 CPU running in real mode be considered to be basically an 8086 CPU?

Are there any consumables that function as addictive (psychedelic) drugs?

Why doesn't Newton's third law mean a person bounces back to where they started when they hit the ground?

Why is the design of haulage companies so “special”?

What would happen to a modern skyscraper if it rains micro blackholes?

Draw simple lines in Inkscape

Is there a familial term for apples and pears?

Why is this code 6.5x slower with optimizations enabled?

How is it possible for user's password to be changed after storage was encrypted? (on OS X, Android)

When blogging recipes, how can I support both readers who want the narrative/journey and ones who want the printer-friendly recipe?

Set-theoretical foundations of Mathematics with only bounded quantifiers

Accidentally leaked the solution to an assignment, what to do now? (I'm the prof)

What Brexit solution does the DUP want?

Why are 150k or 200k jobs considered good when there are 300k+ births a month?

How long does it take to type this?



Try to reverse-proxy vsphere webclient with Apache


Protocol switching with reverse proxy and application server with static linksVmware credential errors with zabbix checkApache reverse proxy location based access control not workingApache Reverse Proxy with Wildfly?Apache - puma reverse proxy failingBasic auth Apache with TomcatWhat is wrong with my nginx reverse proxy configuration, with single server (and more later)Setting up an Apache forward proxy with 2-way SSL with certificate CN check failsApache reverse proxy with ssl not workingOffice365 SSO with JumpCloud SAML






.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty height:90px;width:728px;box-sizing:border-box;








0















We want to protect our VMWare vsphere 6.5 web client with an already existing & working Apache 2.4 reverse proxy (benefits e.g. centralised monitoring, mod_security et.al.)



Both communications client <--> proxy, and proxy <--> backend (= vsphere) must be be TLS secured. Certificates are in place and ok.
DNS is configured accordingly.



Clients can already access the vsphere start page via proxy successfully e.g. https:// vsphere.domain.tld/



Firefox' network analyses shows that all request are fine and accepted, e.g.



 302 GET /vsphere-client/ [FQDN] document html


until /vsphere-client/UI.swf



But as soon as a user clicks on the link "vSphere Web Client (Flash)" in order to authenticate and enter the menues, a status code 400 is thrown. The "vSphere Web Client (Flash)" link directs to /vsphere-client/ and obviously invokes a SAML request.



 400 GET https://vsphere.domain.tld/websso/SAML2/SSO/vsphere.local?SAMLRequest=zVRba9sw[...] [FQDN] subdocument


vsphere sso log shows:



 tomcat-http--38 ERROR org.opensaml.common.binding.decoding.BaseSAMLMessageDecoder] SAML message intended destination endpoint 'https://vsphere-internal.domain.tld/websso/SAML2/SSO/vsphere.local' did not match the recipient endpoint 'https://vsphere.domain.tld/websso/SAML2/SSO/vsphere.local'


Virtual host conf on Apache reverse proxy so far (excerpt) :



 SSLProxyEngine on
 ProxyPreserveHost on
 ProxyRequests off
 ProxyPass / https://vsphere.domain.tld/
 ProxyPassReverse / https://vsphere.domain.tld/

 ProxyPass /vsphere-client https://vsphere.domain.tld/vsphere-client/
 ProxyPassReverse /vsphere-client https://vsphere.domain.tld/vsphere-client/
 ProxyPass /websso/SAML2/SSO https://vsphere.domain.tld/websso/SAML2/SSO/
 ProxyPassReverse /websso/SAML2/SSO https://vsphere.domain.tld/websso/SAML2/SSO/

 # new, to solve the name binding problem (see 1st answer)
 RequestHeader set Host "vsphere-internal.domain.tld"


With the last "RequestHeader" addendum - which in effect just reverses the PreserveHost option - I am now able to see the vsphere login page, and to log in, but the page then stucks again:



 tomcat-http--10 ERROR com.vmware.identity.BaseSsoController] Could not parse tenant request java.lang.IllegalStateException: org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint


Any proposals how to get the full page?






apache-2.4 reverse-proxy vmware-vsphere saml







share|improve this question
























  • Youl would get some more help if you could print verbatim access and error log messages. 400 is a malformed request, this could be a more strict checking of requests in recent versions of httpd. Also, which version are you using?

    – ezra-s
    Jul 4 '17 at 7:34











  • @ezra-s Did add additional infos.

    – MarkHelms
    Jul 4 '17 at 9:52

















0















We want to protect our VMWare vsphere 6.5 web client with an already existing & working Apache 2.4 reverse proxy (benefits e.g. centralised monitoring, mod_security et.al.)



Both communications client <--> proxy, and proxy <--> backend (= vsphere) must be be TLS secured. Certificates are in place and ok.
DNS is configured accordingly.



Clients can already access the vsphere start page via proxy successfully e.g. https:// vsphere.domain.tld/



Firefox' network analyses shows that all request are fine and accepted, e.g.



 302 GET /vsphere-client/ [FQDN] document html


until /vsphere-client/UI.swf



But as soon as a user clicks on the link "vSphere Web Client (Flash)" in order to authenticate and enter the menues, a status code 400 is thrown. The "vSphere Web Client (Flash)" link directs to /vsphere-client/ and obviously invokes a SAML request.



 400 GET https://vsphere.domain.tld/websso/SAML2/SSO/vsphere.local?SAMLRequest=zVRba9sw[...] [FQDN] subdocument


vsphere sso log shows:



 tomcat-http--38 ERROR org.opensaml.common.binding.decoding.BaseSAMLMessageDecoder] SAML message intended destination endpoint 'https://vsphere-internal.domain.tld/websso/SAML2/SSO/vsphere.local' did not match the recipient endpoint 'https://vsphere.domain.tld/websso/SAML2/SSO/vsphere.local'


Virtual host conf on Apache reverse proxy so far (excerpt) :



 SSLProxyEngine on
 ProxyPreserveHost on
 ProxyRequests off
 ProxyPass / https://vsphere.domain.tld/
 ProxyPassReverse / https://vsphere.domain.tld/

 ProxyPass /vsphere-client https://vsphere.domain.tld/vsphere-client/
 ProxyPassReverse /vsphere-client https://vsphere.domain.tld/vsphere-client/
 ProxyPass /websso/SAML2/SSO https://vsphere.domain.tld/websso/SAML2/SSO/
 ProxyPassReverse /websso/SAML2/SSO https://vsphere.domain.tld/websso/SAML2/SSO/

 # new, to solve the name binding problem (see 1st answer)
 RequestHeader set Host "vsphere-internal.domain.tld"


With the last "RequestHeader" addendum - which in effect just reverses the PreserveHost option - I am now able to see the vsphere login page, and to log in, but the page then stucks again:



 tomcat-http--10 ERROR com.vmware.identity.BaseSsoController] Could not parse tenant request java.lang.IllegalStateException: org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint


Any proposals how to get the full page?






apache-2.4 reverse-proxy vmware-vsphere saml







share|improve this question
























  • Youl would get some more help if you could print verbatim access and error log messages. 400 is a malformed request, this could be a more strict checking of requests in recent versions of httpd. Also, which version are you using?

    – ezra-s
    Jul 4 '17 at 7:34











  • @ezra-s Did add additional infos.

    – MarkHelms
    Jul 4 '17 at 9:52













0












0








0








We want to protect our VMWare vsphere 6.5 web client with an already existing & working Apache 2.4 reverse proxy (benefits e.g. centralised monitoring, mod_security et.al.)



Both communications client <--> proxy, and proxy <--> backend (= vsphere) must be be TLS secured. Certificates are in place and ok.
DNS is configured accordingly.



Clients can already access the vsphere start page via proxy successfully e.g. https:// vsphere.domain.tld/



Firefox' network analyses shows that all request are fine and accepted, e.g.



 302 GET /vsphere-client/ [FQDN] document html


until /vsphere-client/UI.swf



But as soon as a user clicks on the link "vSphere Web Client (Flash)" in order to authenticate and enter the menues, a status code 400 is thrown. The "vSphere Web Client (Flash)" link directs to /vsphere-client/ and obviously invokes a SAML request.



 400 GET https://vsphere.domain.tld/websso/SAML2/SSO/vsphere.local?SAMLRequest=zVRba9sw[...] [FQDN] subdocument


vsphere sso log shows:



 tomcat-http--38 ERROR org.opensaml.common.binding.decoding.BaseSAMLMessageDecoder] SAML message intended destination endpoint 'https://vsphere-internal.domain.tld/websso/SAML2/SSO/vsphere.local' did not match the recipient endpoint 'https://vsphere.domain.tld/websso/SAML2/SSO/vsphere.local'


Virtual host conf on Apache reverse proxy so far (excerpt) :



 SSLProxyEngine on
 ProxyPreserveHost on
 ProxyRequests off
 ProxyPass / https://vsphere.domain.tld/
 ProxyPassReverse / https://vsphere.domain.tld/

 ProxyPass /vsphere-client https://vsphere.domain.tld/vsphere-client/
 ProxyPassReverse /vsphere-client https://vsphere.domain.tld/vsphere-client/
 ProxyPass /websso/SAML2/SSO https://vsphere.domain.tld/websso/SAML2/SSO/
 ProxyPassReverse /websso/SAML2/SSO https://vsphere.domain.tld/websso/SAML2/SSO/

 # new, to solve the name binding problem (see 1st answer)
 RequestHeader set Host "vsphere-internal.domain.tld"


With the last "RequestHeader" addendum - which in effect just reverses the PreserveHost option - I am now able to see the vsphere login page, and to log in, but the page then stucks again:



 tomcat-http--10 ERROR com.vmware.identity.BaseSsoController] Could not parse tenant request java.lang.IllegalStateException: org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint


Any proposals how to get the full page?






apache-2.4 reverse-proxy vmware-vsphere saml







share|improve this question
















We want to protect our VMWare vsphere 6.5 web client with an already existing & working Apache 2.4 reverse proxy (benefits e.g. centralised monitoring, mod_security et.al.)



Both communications client <--> proxy, and proxy <--> backend (= vsphere) must be be TLS secured. Certificates are in place and ok.
DNS is configured accordingly.



Clients can already access the vsphere start page via proxy successfully e.g. https:// vsphere.domain.tld/



Firefox' network analyses shows that all request are fine and accepted, e.g.



 302 GET /vsphere-client/ [FQDN] document html


until /vsphere-client/UI.swf



But as soon as a user clicks on the link "vSphere Web Client (Flash)" in order to authenticate and enter the menues, a status code 400 is thrown. The "vSphere Web Client (Flash)" link directs to /vsphere-client/ and obviously invokes a SAML request.



 400 GET https://vsphere.domain.tld/websso/SAML2/SSO/vsphere.local?SAMLRequest=zVRba9sw[...] [FQDN] subdocument


vsphere sso log shows:



 tomcat-http--38 ERROR org.opensaml.common.binding.decoding.BaseSAMLMessageDecoder] SAML message intended destination endpoint 'https://vsphere-internal.domain.tld/websso/SAML2/SSO/vsphere.local' did not match the recipient endpoint 'https://vsphere.domain.tld/websso/SAML2/SSO/vsphere.local'


Virtual host conf on Apache reverse proxy so far (excerpt) :



 SSLProxyEngine on
 ProxyPreserveHost on
 ProxyRequests off
 ProxyPass / https://vsphere.domain.tld/
 ProxyPassReverse / https://vsphere.domain.tld/

 ProxyPass /vsphere-client https://vsphere.domain.tld/vsphere-client/
 ProxyPassReverse /vsphere-client https://vsphere.domain.tld/vsphere-client/
 ProxyPass /websso/SAML2/SSO https://vsphere.domain.tld/websso/SAML2/SSO/
 ProxyPassReverse /websso/SAML2/SSO https://vsphere.domain.tld/websso/SAML2/SSO/

 # new, to solve the name binding problem (see 1st answer)
 RequestHeader set Host "vsphere-internal.domain.tld"


With the last "RequestHeader" addendum - which in effect just reverses the PreserveHost option - I am now able to see the vsphere login page, and to log in, but the page then stucks again:



 tomcat-http--10 ERROR com.vmware.identity.BaseSsoController] Could not parse tenant request java.lang.IllegalStateException: org.opensaml.xml.security.SecurityException: SAML message intended destination endpoint did not match recipient endpoint


Any proposals how to get the full page?






apache-2.4 reverse-proxy vmware-vsphere saml




apache-2.4 reverse-proxy vmware-vsphere saml






share|improve this question















share|improve this question













share|improve this question




share|improve this question








edited Jul 4 '17 at 15:24







MarkHelms

















asked Jul 3 '17 at 9:25









MarkHelmsMarkHelms

10612




10612












  • Youl would get some more help if you could print verbatim access and error log messages. 400 is a malformed request, this could be a more strict checking of requests in recent versions of httpd. Also, which version are you using?

    – ezra-s
    Jul 4 '17 at 7:34











  • @ezra-s Did add additional infos.

    – MarkHelms
    Jul 4 '17 at 9:52

















  • Youl would get some more help if you could print verbatim access and error log messages. 400 is a malformed request, this could be a more strict checking of requests in recent versions of httpd. Also, which version are you using?

    – ezra-s
    Jul 4 '17 at 7:34











  • @ezra-s Did add additional infos.

    – MarkHelms
    Jul 4 '17 at 9:52
















Youl would get some more help if you could print verbatim access and error log messages. 400 is a malformed request, this could be a more strict checking of requests in recent versions of httpd. Also, which version are you using?

– ezra-s
Jul 4 '17 at 7:34





Youl would get some more help if you could print verbatim access and error log messages. 400 is a malformed request, this could be a more strict checking of requests in recent versions of httpd. Also, which version are you using?

– ezra-s
Jul 4 '17 at 7:34













@ezra-s Did add additional infos.

– MarkHelms
Jul 4 '17 at 9:52





@ezra-s Did add additional infos.

– MarkHelms
Jul 4 '17 at 9:52










1 Answer
1






active

oldest

votes


















0














I thought to solve the first problem, i.e. "intended destination endpoint ... did not match the recipient endpoint", by adding the backend hostname (= vsphere web client) to Apache's vhost conf:



 RequestHeader set Host "<backend hostname>"


(here: vsphere-internal.domain.tld), but as ezra-s explained correctly this just reversed the PreserveHost option. So I deleted both the RequestHeader and the PreserveHost option. Still suffer the second problem...






share|improve this answer

























  • what you are saying here is you should not have added ProxyPreserveHost on . Now the most correct way is to remove it, or set it to off, instead of manually hadding a request header.

    – ezra-s
    Jul 4 '17 at 10:38












Your Answer








StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "2"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













draft saved

draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f859053%2ftry-to-reverse-proxy-vsphere-webclient-with-apache%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes









0














I thought to solve the first problem, i.e. "intended destination endpoint ... did not match the recipient endpoint", by adding the backend hostname (= vsphere web client) to Apache's vhost conf:



 RequestHeader set Host "<backend hostname>"


(here: vsphere-internal.domain.tld), but as ezra-s explained correctly this just reversed the PreserveHost option. So I deleted both the RequestHeader and the PreserveHost option. Still suffer the second problem...






share|improve this answer

























  • what you are saying here is you should not have added ProxyPreserveHost on . Now the most correct way is to remove it, or set it to off, instead of manually hadding a request header.

    – ezra-s
    Jul 4 '17 at 10:38
















0














I thought to solve the first problem, i.e. "intended destination endpoint ... did not match the recipient endpoint", by adding the backend hostname (= vsphere web client) to Apache's vhost conf:



 RequestHeader set Host "<backend hostname>"


(here: vsphere-internal.domain.tld), but as ezra-s explained correctly this just reversed the PreserveHost option. So I deleted both the RequestHeader and the PreserveHost option. Still suffer the second problem...






share|improve this answer

























  • what you are saying here is you should not have added ProxyPreserveHost on . Now the most correct way is to remove it, or set it to off, instead of manually hadding a request header.

    – ezra-s
    Jul 4 '17 at 10:38














0












0








0







I thought to solve the first problem, i.e. "intended destination endpoint ... did not match the recipient endpoint", by adding the backend hostname (= vsphere web client) to Apache's vhost conf:



 RequestHeader set Host "<backend hostname>"


(here: vsphere-internal.domain.tld), but as ezra-s explained correctly this just reversed the PreserveHost option. So I deleted both the RequestHeader and the PreserveHost option. Still suffer the second problem...






share|improve this answer















I thought to solve the first problem, i.e. "intended destination endpoint ... did not match the recipient endpoint", by adding the backend hostname (= vsphere web client) to Apache's vhost conf:



 RequestHeader set Host "<backend hostname>"


(here: vsphere-internal.domain.tld), but as ezra-s explained correctly this just reversed the PreserveHost option. So I deleted both the RequestHeader and the PreserveHost option. Still suffer the second problem...







share|improve this answer














share|improve this answer



share|improve this answer








edited Jul 4 '17 at 15:19

























answered Jul 4 '17 at 10:05









MarkHelmsMarkHelms

10612




10612












  • what you are saying here is you should not have added ProxyPreserveHost on . Now the most correct way is to remove it, or set it to off, instead of manually hadding a request header.

    – ezra-s
    Jul 4 '17 at 10:38


















  • what you are saying here is you should not have added ProxyPreserveHost on . Now the most correct way is to remove it, or set it to off, instead of manually hadding a request header.

    – ezra-s
    Jul 4 '17 at 10:38

















what you are saying here is you should not have added ProxyPreserveHost on . Now the most correct way is to remove it, or set it to off, instead of manually hadding a request header.

– ezra-s
Jul 4 '17 at 10:38






what you are saying here is you should not have added ProxyPreserveHost on . Now the most correct way is to remove it, or set it to off, instead of manually hadding a request header.

– ezra-s
Jul 4 '17 at 10:38


















draft saved

draft discarded
















































Thanks for contributing an answer to Server Fault!


  • Please be sure to answer the question. Provide details and share your research!

But avoid


  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.

To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fserverfault.com%2fquestions%2f859053%2ftry-to-reverse-proxy-vsphere-webclient-with-apache%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







-

Popular posts from this blog

Club Baloncesto Breogán Índice Historia | Pavillón | Nome | O Breogán na cultura popular | Xogadores | Adestradores | Presidentes | Palmarés | Historial | Líderes | Notas | Véxase tamén | Menú de navegacióncbbreogan.galCadroGuía oficial da ACB 2009-10, páxina 201Guía oficial ACB 1992, páxina 183. Editorial DB.É de 6.500 espectadores sentados axeitándose á última normativa"Estudiantes Junior, entre as mellores canteiras"o orixinalHemeroteca El Mundo Deportivo, 16 setembro de 1970, páxina 12Historia do BreogánAlfredo Pérez, o último canoneiroHistoria C.B. BreogánHemeroteca de El Mundo DeportivoJimmy Wright, norteamericano do Breogán deixará Lugo por ameazas de morteResultados de Breogán en 1986-87Resultados de Breogán en 1990-91Ficha de Velimir Perasović en acb.comResultados de Breogán en 1994-95Breogán arrasa al Barça. "El Mundo Deportivo", 27 de setembro de 1999, páxina 58CB Breogán - FC BarcelonaA FEB invita a participar nunha nova Liga EuropeaCharlie Bell na prensa estatalMáximos anotadores 2005Tempada 2005-06 : Tódolos Xogadores da Xornada""Non quero pensar nunha man negra, mais pregúntome que está a pasar""o orixinalRaúl López, orgulloso dos xogadores, presume da boa saúde económica do BreogánJulio González confirma que cesa como presidente del BreogánHomenaxe a Lisardo GómezA tempada do rexurdimento celesteEntrevista a Lisardo GómezEl COB dinamita el Pazo para forzar el quinto (69-73)Cafés Candelas, patrocinador del CB Breogán"Suso Lázare, novo presidente do Breogán"o orixinalCafés Candelas Breogán firma el mayor triunfo de la historiaEl Breogán realizará 17 homenajes por su cincuenta aniversario"O Breogán honra ao seu fundador e primeiro presidente"o orixinalMiguel Giao recibiu a homenaxe do PazoHomenaxe aos primeiros gladiadores celestesO home que nos amosa como ver o Breo co corazónTita Franco será homenaxeada polos #50anosdeBreoJulio Vila recibirá unha homenaxe in memoriam polos #50anosdeBreo"O Breogán homenaxeará aos seus aboados máis veteráns"Pechada ovación a «Capi» Sanmartín e Ricardo «Corazón de González»Homenaxe por décadas de informaciónPaco García volve ao Pazo con motivo do 50 aniversario"Resultados y clasificaciones""O Cafés Candelas Breogán, campión da Copa Princesa""O Cafés Candelas Breogán, equipo ACB"C.B. Breogán"Proxecto social"o orixinal"Centros asociados"o orixinalFicha en imdb.comMario Camus trata la recuperación del amor en 'La vieja música', su última película"Páxina web oficial""Club Baloncesto Breogán""C. B. Breogán S.A.D."eehttp://www.fegaba.com

Image
Barça LassaBAXI ManresaCafés Candelas BreogánDelteco GBCDivina Seguros JoventutHerbalife Gran CanariaIberostar TenerifeKirolbet BaskoniaMonbus ObradoiroMontakit FuenlabradaMoraBanc AndorraMovistar EstudiantesReal MadridSan Pablo BurgosTecnyconta ZaragozaUCAM MurciaUnicajaValencia Basket Club Baloncesto Breogán baloncestoLugoGalicia1966JuanJosé Ramón Varela Portasmáxima categoría1970competicións europeasLiga ACBPavillón MunicipalPazo dos DeportesJesús Lázareliga EBAClub Estudiantes1965Lugobaloncestosegunda divisiónJosé RamónJuan Varela-Portas y Pardo1966Celestino Fernández de la Vega196869primeira divisiónZaragozaprimeira divisiónReal MadridJoventutEstudiantes19701971máxima categoría estatal11 de outubro1970Palacio dos DeportesLugoTenerifeMadridReal MadridAlfredo PérezBreogán19711972TenerifeMadridvascocatalánAlfredo PérezespañolMadridLugoManresa La Casera19741975As...
Read more

Vilaño, A Laracha Índice Patrimonio | Lugares e parroquias | Véxase tamén | Menú de navegación43°14′52″N 8°36′03″O / 43.24775, -8.60070

Image
Parroquias da LarachaParroquias de Galicia baixo a advocación de Santiago o Maior coruñésLarachacomarca de BergantiñosIGE20131999castro de Montesclarospoboado castrexoidade de ferroromanización de Galiciamiliariopazo de Montesclarosséculo XIXAmboadeA AreosaA BarreiraBos AiresA BoticaAs Brañas da ViñaAs BrañasBusteloOs CanedosFerreirosAs FervenzasA Fonte da CanleO FormigueiroFornelosA FragaFragundeGravidoA LamelaMarfuloOs MeánsMontes ClarosA PanelaO PazoQuintánsRibelaSamiroO SeixoA TelleiraVilañoVilanovaA ViñaVista AlegreCabovilaño (San Román)Caión (Santa María do Socorro)Coiro (San Xián)Erboedo (Santa María)Golmar (San Bieito)Lemaio (Santa Mariña)Lendo (San Xián)Lestón (San Martiño)Montemaior (Santa María Madanela)Soandres (San Pedro)Soutullo (Santa María)Torás (Santa María)Vilaño (Santiago) Vilaño, A Laracha Na Galipedia, a Wi...
Read more

Cegueira Índice Epidemioloxía | Deficiencia visual | Tipos de cegueira | Principais causas de cegueira | Tratamento | Técnicas de adaptación e axudas | Vida dos cegos | Primeiros auxilios | Crenzas respecto das persoas cegas | Crenzas das persoas cegas | O neno deficiente visual | Aspectos psicolóxicos da cegueira | Notas | Véxase tamén | Menú de navegación54.054.154.436928256blindnessDicionario da Real Academia GalegaPortal das Palabras"International Standards: Visual Standards — Aspects and Ranges of Vision Loss with Emphasis on Population Surveys.""Visual impairment and blindness""Presentan un plan para previr a cegueira"o orixinalACCDV Associació Catalana de Cecs i Disminuïts Visuals - PMFTrachoma"Effect of gene therapy on visual function in Leber's congenital amaurosis"1844137110.1056/NEJMoa0802268Cans guía - os mellores amigos dos cegosArquivadoEscola de cans guía para cegos en Mortágua, PortugalArquivado"Tecnología para ciegos y deficientes visuales. Recopilación de recursos gratuitos en la Red""Colorino""‘COL.diesis’, escuchar los sonidos del color""COL.diesis: Transforming Colour into Melody and Implementing the Result in a Colour Sensor Device"o orixinal"Sistema de desarrollo de sinestesia color-sonido para invidentes utilizando un protocolo de audio""Enseñanza táctil - geometría y color. Juegos didácticos para niños ciegos y videntes""Sistema Constanz"L'ocupació laboral dels cecs a l'Estat espanyol està pràcticament equiparada a la de les persones amb visió, entrevista amb Pedro ZuritaONCE (Organización Nacional de Cegos de España)Prevención da cegueiraDescrición de deficiencias visuais (Disc@pnet)Braillín, un boneco atractivo para calquera neno, con ou sen discapacidade, que permite familiarizarse co sistema de escritura e lectura brailleAxudas Técnicas36838ID00897494007150-90057129528256DOID:1432HP:0000618D001766C10.597.751.941.162C97109C0155020

Image
OftalmoloxíaDiscapacidade sentidovistaNorteaméricaEuropaollopaíses en vías de desenvolvementopaíses desenvolvidos2014Organización Mundial da SaúdeGaliciaretinopatía diabéticaglaucomaresto visualagudeza visualcampo visualterapia xénicaretinavirus do arrefriado comúncanadestradoséculo XIXLouis Brailleteclado brailleescáneresrecoñecemento óptico de caractereslectores de pantallacorsinestesiafrauta doceamareloclarineteazultamboresvermellopianoverdeSistema Constanzsemáforocans guíaBrailletactosoftwaretactoeuroAvuiséculo XXUnión SoviéticaFranciaItaliaInglaterraNataciónatletismociclismojudoesquífútbol salamontañismoxadrezgoalballsociedademúsicosindixentesprofetassabiosoídotactomúsicarisatactooídolinguaxePiaget (function()var node=document.getElementById("mw-dismissablenotice-anonplace");if(node)node.outerHTML="u003Cdiv class="mw-dismissable-notice"u0...
Read more