Details
-
Bug
-
Resolution: Cannot Reproduce
-
Major
-
None
-
None
-
None
Description
This bug is the same than https://issues.jboss.org/browse/UNDERTOW-348 but with the difference that the application is configured to use JAAS form based authentication
Example of web.xml to enable form based authentication
<security-constraint> <web-resource-collection> <web-resource-name>authenticated users</web-resource-name> <url-pattern>index</url-pattern> </web-resource-collection> <auth-constraint> <role-name>roletest</role-name> </auth-constraint> </security-constraint> <login-config> <auth-method>FORM</auth-method> <realm-name>ApplicationRealm</realm-name> <form-login-config> <form-login-page>/html/login.html</form-login-page> </form-login-config> </login-config>
The content of /html/login.html is as follow:
<form action="j_security_check" method="post"> <input type="text" placeholder="Username" name="j_username"> <input type="password" placeholder="Password" name="j_password"> <input type="submit"> </form>
Given a request to / and a welcome file set to /index
After the login, JBossWeb wil return "/" when HttpServletRequest#getRequestURI is called,
and "/index" when HttpServletRequest#getServletPath is called.
Undertow will return "/index" in both cases.
Example:
With a welcome file declaration in web.xml as follows:
<welcome-file-list> <welcome-file>index</welcome-file> </welcome-file-list>
and when requesting the context root of an application (e.g. http://localhost:8080 for a root deployment), after the login the results are as follows:
getRequestURI | getServletPath | |
---|---|---|
Tomcat/JBossWeb | / | /welcome |
Undertow | /welcome | /welcome |