[jboss-user] [Security & JAAS/JBoss] - 4.0.3 to 4.0.5 change in functionality?
ryoung2504
do-not-reply at jboss.com
Thu Feb 8 16:38:58 EST 2007
I have a series of applications that I have recently been trying to upgrade from running on 4.0.3SP1 to 4.0.5GA.
I use form authentication and have noticed an unusual effect.
On 4.0.3SP1 I could use an http POST or GET when accessing a secured web resource from an unsecured resource by an unathenticated user and in both cases the request parameters were available on the login form. I could then use these parameters on the login form page to customise the form.
On 4.0.5GA if I use and http GET then all is as before.
However on 4.0.5GA if I use and http POST then the parameters are not forwarded.
Is this a new feature of 4.0.5GA? If so is it possible to turn it off so that POSTs and GETs behave the same?
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4013285#4013285
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4013285
More information about the jboss-user
mailing list