Uploaded image for project: 'PicketLink'
  1. PicketLink
  2. PLINK-554

IDP Hosted content not server properly if ExtendedFormAuthenticator valve is added before IDPWebBrowserSSOValve

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Minor Minor
    • PLINK_2.7.0.Beta2
    • PLINK_2.6.0.Final
    • SAML
    • None

      Using the following jboss-web.xml, the hosted page breaks

      <jboss-web>
        <security-domain>idp</security-domain>
        <context-root>idp</context-root>
         <valve>
            <class-name>org.jboss.as.web.security.ExtendedFormAuthenticator</class-name>
      		<param>
      			<param-name>changeSessionIdOnAuthentication</param-name>
      			<param-value>true</param-value>
      		</param>	  
          </valve>
        <valve>
           <class-name>org.picketlink.identity.federation.bindings.tomcat.idp.IDPWebBrowserSSOValve</class-name>
         </valve>	
      </jboss-web>
      

      In chrome you get the following warnings:

      Resource interpreted as Image but transferred with MIME type text/plain: "http://localhost:8080/idp/images/picketlink-banner-1180px.png". localhost/:32
      Resource interpreted as Stylesheet but transferred with MIME type text/plain: "http://localhost:8080/idp/css/idp.css". 
      

      The content of those two files (css, image) is the hosted page html.

      By reversing the order, everything works:

      <jboss-web>
        <security-domain>idp</security-domain>
        <context-root>idp</context-root>
        <valve>
           <class-name>org.picketlink.identity.federation.bindings.tomcat.idp.IDPWebBrowserSSOValve</class-name>
         </valve>	
      
         <valve>
            <class-name>org.jboss.as.web.security.ExtendedFormAuthenticator</class-name>
      		<param>
      			<param-name>changeSessionIdOnAuthentication</param-name>
      			<param-value>true</param-value>
      		</param>	  
          </valve>
      </jboss-web>
      

              psilva@redhat.com Pedro Igor Craveiro
              alpapad_jira Alexander Papadakis (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: