Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: 2.0.0.Beta1, 1.3.28.Final, 1.4.10.Final
Affects Version/s: 1.3.25.Final, 1.4.8.Final
Component/s: Servlet
Labels:
None

Steps to Reproduce:

Hide

-Put attached configurations and deployment (~~UNDERTOW-958~~-test.zip) in place
-Launch jboss (./standalone.sh -c undertow958.xml)
-Access the application (localhost:8080/undertow958) and attempt to login with admin/admin

Show
-Put attached configurations and deployment ( UNDERTOW-958 -test.zip) in place -Launch jboss (./standalone.sh -c undertow958.xml) -Access the application (localhost:8080/undertow958) and attempt to login with admin/admin
Git Pull Request:
https://github.com/undertow-io/undertow/pull/473

URL session tracking does not work with FORM authentication. This is because the session id is changed after login, but the jsessionid in the URL is not updated accordingly. Thus, post login requests use the old jsessionid and fail.

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

Hide
UNDERTOW-958-test.zip
2017/01/17 5:55 PM
19 kB
Aaron Ogburn
Extracting archive...
Show
UNDERTOW-958-test.zip
2017/01/17 5:55 PM
19 kB
Aaron Ogburn

is cloned by

JBEAP-8386 [GSS](7.0.z) UNDERTOW-958 - FORM authentication fails to change URL session id after login

Verified

Assignee:: Stuart Douglas

Reporter:: Aaron Ogburn

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2017/01/17 5:46 PM

Updated:: 2020/09/30 2:28 PM

Resolved:: 2017/01/18 11:20 PM

Details

Description

Attachments

Attachments

Issue Links

Activity

People

Dates