Uploaded image for project: 'Undertow'
  1. Undertow
  2. UNDERTOW-1538

FormAuthenticationMechanism invalid redirect

    Details

    • Type: Bug
    • Status: Open (View Workflow)
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: Core, Security
    • Labels:
      None
    • Workaround Description:
      Hide

      Since I was using HTTPSchemeServerAuthModule, that delegates authentication to FormAuthenticationMechanism, I pick some pieces of code from both of them and created my own custom ServerAuthModule, that does not delegates to FormAuthenticationMechanism but uses some behavior.

      Show
      Since I was using HTTPSchemeServerAuthModule, that delegates authentication to FormAuthenticationMechanism, I pick some pieces of code from both of them and created my own custom ServerAuthModule, that does not delegates to FormAuthenticationMechanism but uses some behavior.

      Description

      The location constructed in the method servePage is missing the context path.
      Why not use RedirectBuilder.redirect(exchange, location)?

      Within a JASPIC context, HTTPSchemeServerAuthModule is able to delegate the authentication to FormAuthenticationMechanism, whichs fails on this point.

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                flavia.rainone Flavia Rainone
                Reporter:
                fuzao Ricardo Veloso
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated: