DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG·
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=32675>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND·
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=32675
Summary: Form based login fails after context reload
Product: Tomcat 5
Version: 5.0.28
Platform: PC
OS/Version: Windows 2000
Status: NEW
Severity: normal
Priority: P2
Component: Catalina
AssignedTo: tomcat-dev@jakarta.apache.org
ReportedBy: caleb.phillips@vflic.com
I have configured form based login for a resource collection in my web app
and it works fine. I do not directly reference the login form page. Tomcat
handles the redirection for me as it should. But I am encountering a
problem. When this sequence of events occurs:
- Request a protected resource
- User is presented with the login form, but doesn't log in yet
- Context is reloaded (or container is restarted)
- User logs in user the same form that was presented (without refreshing)
The request fails with
"HTTP Status 400 - Invalid direct reference to form login page"
If I make sure to refresh the login page after the context is reloaded,
everything works as expected. The code and config are the same in both
cases.
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org
|