-
Bug
-
Resolution: Done
-
Blocker
-
None
-
None
The web.xml introduction of the WebSocket Basic Auth Filter, which is the fix made in JBPM-7902, appears in Business Central nightly product builds, but not in Decision Central nightly product builds.
RHPAM has this (correct):
<filter> <filter-name>HTTP Basic Auth Filter</filter-name> <filter-class>org.uberfire.ext.security.server.BasicAuthSecurityFilter</filter-class> <init-param> <param-name>realmName</param-name> <param-value>KIE Workbench Realm</param-value> </init-param> </filter> <filter-mapping> <filter-name>HTTP Basic Auth Filter</filter-name> <url-pattern>/rest/*</url-pattern> <url-pattern>/maven2/*</url-pattern> <url-pattern>/ws/*</url-pattern> </filter-mapping> <filter> <filter-name>WebSocket Basic Auth Filter</filter-name> <filter-class>org.uberfire.ext.security.server.BasicAuthSecurityFilter</filter-class> <init-param> <param-name>realmName</param-name> <param-value>KIE Workbench Realm</param-value> </init-param> <init-param> <param-name>invalidate</param-name> <param-value>false</param-value> </init-param> </filter> <filter-mapping> <filter-name>WebSocket Basic Auth Filter</filter-name> <url-pattern>/websocket/*</url-pattern> </filter-mapping>
RHDM still has this (incorrect):
<filter> <filter-name>HTTP Basic Auth Filter</filter-name> <filter-class>org.uberfire.ext.security.server.BasicAuthSecurityFilter</filter-class> <init-param> <param-name>realmName</param-name> <param-value>KIE Workbench Realm</param-value> </init-param> </filter> <filter-mapping> <filter-name>HTTP Basic Auth Filter</filter-name> <url-pattern>/rest/*</url-pattern> <url-pattern>/maven2/*</url-pattern> <url-pattern>/websocket/*</url-pattern> </filter-mapping>
- blocks
-
KIECLOUD-20 Update RHDM and RHPAM images to be based on EAP 7.2.x
- Closed
- clones
-
JBPM-7952 WebSocket session invalidation fix not included in RHDM product builds
- Resolved
- relates to
-
JBPM-7902 WebSocket session is invalidated when connecting to embedded controller
- Resolved