Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-8386

[GSS](7.0.z) UNDERTOW-958 - FORM authentication fails to change URL session id after login

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 7.0.6.CR1, 7.0.6.GA
    • 7.0.4.GA
    • Undertow
    • None
    • Hide

      -Put attached configurations and deployment (UNDERTOW-958-test.zip) in place
      -Launch jboss (./standalone.sh -c undertow958.xml)
      -Access the application (localhost:8080/undertow958) and attempt to login with admin/admin

      Show
      -Put attached configurations and deployment ( UNDERTOW-958 -test.zip) in place -Launch jboss (./standalone.sh -c undertow958.xml) -Access the application (localhost:8080/undertow958) and attempt to login with admin/admin
    • EAP 7.0.6

      URL session tracking does not work with FORM authentication. This is because the session id is changed after login, but the jsessionid in the URL is not updated accordingly. Thus, post login requests use the old jsessionid and fail.

            sdouglas1@redhat.com Stuart Douglas
            rhn-support-rbost Robert Bost
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Created:
              Updated:
              Resolved: