Uploaded image for project: 'Undertow'
  1. Undertow
  2. UNDERTOW-1538

FormAuthenticationMechanism invalid redirect

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Won't Do
    • Icon: Major Major
    • None
    • None
    • Core, Security
    • None
    • Hide

      Since I was using HTTPSchemeServerAuthModule, that delegates authentication to FormAuthenticationMechanism, I pick some pieces of code from both of them and created my own custom ServerAuthModule, that does not delegates to FormAuthenticationMechanism but uses some behavior.

      Show
      Since I was using HTTPSchemeServerAuthModule, that delegates authentication to FormAuthenticationMechanism, I pick some pieces of code from both of them and created my own custom ServerAuthModule, that does not delegates to FormAuthenticationMechanism but uses some behavior.

      The location constructed in the method servePage is missing the context path.
      Why not use RedirectBuilder.redirect(exchange, location)?

      Within a JASPIC context, HTTPSchemeServerAuthModule is able to delegate the authentication to FormAuthenticationMechanism, whichs fails on this point.

              rhn-cservice-bbaranow Bartosz Baranowski
              fuzao Ricardo Veloso (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: