[JBoss JIRA] Created: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[JBoss JIRA] Created: (JBAS-5742)...

[JBoss JIRA] Created: (JBAS-5736)...

Anil Saldhana (JIRA)

Wednesday, 18 June 2008 Wed, 18 Jun '08

5:13 p.m.

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public (Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

Show replies by date

Anil Saldhana (JIRA)

Wednesday, 18 June Wed, 18 Jun

6:37 p.m.

New subject: [JBoss JIRA] Assigned: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=all ] Anil Saldhana reassigned JBAS-5645: ----------------------------------- Assignee: Anil Saldhana (was: Remy Maucherat)

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Anil Saldhana Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

-- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira

Anil Saldhana (JIRA)

6:37 p.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12417887 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- The issue seems to be that when the request reaches the form authenticator, the request method has changed to GET when it should be POST. So there may be a redirection internally by tomcat. The request dispatcher valve will help in debugging this issue. I will determine the real cause in few hours and then pass to Remy if necessary.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Anil Saldhana Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

11:25 p.m.

New subject: [JBoss JIRA] Assigned: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=all ] Anil Saldhana reassigned JBAS-5645: ----------------------------------- Assignee: Remy Maucherat (was: Anil Saldhana) ============================================== 23:14:07,468 INFO [TomcatDeployment] deploy, ctxPath=/form-auth, vfsUrl=form-auth.war 23:14:16,662 INFO [[localhost]] REQUEST URI =/form-auth/unsecure_form.html 23:14:16,662 INFO [[localhost]] authType=null 23:14:16,663 INFO [[localhost]] characterEncoding=null 23:14:16,663 INFO [[localhost]] contentLength=-1 23:14:16,663 INFO [[localhost]] contentType=null 23:14:16,663 INFO [[localhost]] contextPath=/form-auth 23:14:16,664 INFO [[localhost]] header=user-agent=Jakarta Commons-HttpClient/2.0final 23:14:16,664 INFO [[localhost]] header=host=localhost:8080 23:14:16,664 INFO [[localhost]] locale=en_US 23:14:16,664 INFO [[localhost]] method=GET 23:14:16,665 INFO [[localhost]] pathInfo=null 23:14:16,665 INFO [[localhost]] protocol=HTTP/1.1 23:14:16,665 INFO [[localhost]] queryString=null 23:14:16,665 INFO [[localhost]] remoteAddr=127.0.0.1 23:14:16,665 INFO [[localhost]] remoteHost=127.0.0.1 23:14:16,665 INFO [[localhost]] remoteUser=null 23:14:16,665 INFO [[localhost]] requestedSessionId=null 23:14:16,665 INFO [[localhost]] scheme=http 23:14:16,666 INFO [[localhost]] serverName=localhost 23:14:16,666 INFO [[localhost]] serverPort=8080 23:14:16,666 INFO [[localhost]] servletPath=/unsecure_form.html 23:14:16,666 INFO [[localhost]] isSecure=false 23:14:16,666 INFO [[localhost]] --------------------------------------------------------------- 23:14:19,942 INFO [[localhost]] --------------------------------------------------------------- 23:14:19,943 INFO [[localhost]] authType=null 23:14:19,943 INFO [[localhost]] contentLength=650 23:14:19,943 INFO [[localhost]] contentType=text/html 23:14:19,944 INFO [[localhost]] header=X-Powered-By=Servlet 2.5; JBoss-5.0/JBossWeb-2.0/Tomcat-6.0 23:14:19,944 INFO [[localhost]] header=ETag=W/"650-1213810712000" 23:14:19,944 INFO [[localhost]] header=Last-Modified=Wed, 18 Jun 2008 17:38:32 GMT 23:14:19,945 INFO [[localhost]] message=null 23:14:19,945 INFO [[localhost]] remoteUser=null 23:14:19,945 INFO [[localhost]] status=200 23:14:19,945 INFO [[localhost]] =============================================================== 23:14:19,999 INFO [[localhost]] REQUEST URI =/form-auth/restricted/SecuredPostServlet 23:14:20,000 INFO [[localhost]] authType=null 23:14:20,000 INFO [[localhost]] characterEncoding=null 23:14:20,000 INFO [[localhost]] contentLength=17 23:14:20,000 INFO [[localhost]] contentType=application/x-www-form-urlencoded 23:14:20,000 INFO [[localhost]] contextPath=/form-auth 23:14:20,000 INFO [[localhost]] header=user-agent=Jakarta Commons-HttpClient/2.0final 23:14:20,000 INFO [[localhost]] header=host=localhost:8080 23:14:20,000 INFO [[localhost]] header=content-length=17 23:14:20,000 INFO [[localhost]] header=content-type=application/x-www-form-urlencoded 23:14:20,000 INFO [[localhost]] locale=en_US 23:14:20,000 INFO [[localhost]] method=POST 23:14:20,001 INFO [[localhost]] parameter=checkParam=123456 23:14:20,001 INFO [[localhost]] pathInfo=null 23:14:20,001 INFO [[localhost]] protocol=HTTP/1.1 23:14:20,001 INFO [[localhost]] queryString=null 23:14:20,001 INFO [[localhost]] remoteAddr=127.0.0.1 23:14:20,001 INFO [[localhost]] remoteHost=127.0.0.1 23:14:20,001 INFO [[localhost]] remoteUser=null 23:14:20,001 INFO [[localhost]] requestedSessionId=null 23:14:20,001 INFO [[localhost]] scheme=http 23:14:20,001 INFO [[localhost]] serverName=localhost 23:14:20,001 INFO [[localhost]] serverPort=8080 23:14:20,001 INFO [[localhost]] servletPath=/restricted/SecuredPostServlet 23:14:20,001 INFO [[localhost]] isSecure=false 23:14:20,002 INFO [[localhost]] --------------------------------------------------------------- 23:17:18,473 INFO [[localhost]] --------------------------------------------------------------- 23:17:18,473 INFO [[localhost]] authType=null 23:17:18,473 INFO [[localhost]] contentLength=711 23:17:18,473 INFO [[localhost]] contentType=text/html 23:17:18,473 INFO [[localhost]] cookie=JSESSIONID=1BF698881ED5159F6EDA8211148871B4; domain=null; path=/ 23:17:18,473 INFO [[localhost]] header=Set-Cookie=JSESSIONID=1BF698881ED5159F6EDA8211148871B4; Path=/ 23:17:18,473 INFO [[localhost]] header=ETag=W/"711-1213810716000" 23:17:18,473 INFO [[localhost]] header=Last-Modified=Wed, 18 Jun 2008 17:38:36 GMT 23:17:18,474 INFO [[localhost]] message=null 23:17:18,474 INFO [[localhost]] remoteUser=null 23:17:18,474 INFO [[localhost]] status=200 23:17:18,474 INFO [[localhost]] =============================================================== 23:17:18,532 INFO [[localhost]] REQUEST URI =/form-auth/j_security_check 23:17:18,532 INFO [[localhost]] authType=null 23:17:18,533 INFO [[localhost]] characterEncoding=null 23:17:18,533 INFO [[localhost]] contentLength=35 23:17:18,533 INFO [[localhost]] contentType=application/x-www-form-urlencoded 23:17:18,533 INFO [[localhost]] contextPath=/form-auth 23:17:18,533 INFO [[localhost]] cookie=JSESSIONID=1BF698881ED5159F6EDA8211148871B4 23:17:18,533 INFO [[localhost]] header=referer=http://localhost:8080/form-auth/unsecure_form.html 23:17:18,533 INFO [[localhost]] header=user-agent=Jakarta Commons-HttpClient/2.0final 23:17:18,533 INFO [[localhost]] header=host=localhost:8080 23:17:18,533 INFO [[localhost]] header=cookie=$Version=0; JSESSIONID=1BF698881ED5159F6EDA8211148871B4; $Path=/ 23:17:18,533 INFO [[localhost]] header=content-length=35 23:17:18,533 INFO [[localhost]] header=content-type=application/x-www-form-urlencoded 23:17:18,533 INFO [[localhost]] locale=en_US 23:17:18,533 INFO [[localhost]] method=POST 23:17:18,534 INFO [[localhost]] parameter=j_username=jduke 23:17:18,534 INFO [[localhost]] parameter=j_password=theduke 23:17:18,534 INFO [[localhost]] pathInfo=null 23:17:18,534 INFO [[localhost]] protocol=HTTP/1.1 23:17:18,534 INFO [[localhost]] queryString=null 23:17:18,534 INFO [[localhost]] remoteAddr=127.0.0.1 23:17:18,534 INFO [[localhost]] remoteHost=127.0.0.1 23:17:18,535 INFO [[localhost]] remoteUser=null 23:17:18,535 INFO [[localhost]] requestedSessionId=1BF698881ED5159F6EDA8211148871B4 23:17:18,535 INFO [[localhost]] scheme=http 23:17:18,535 INFO [[localhost]] serverName=localhost 23:17:18,535 INFO [[localhost]] serverPort=8080 23:17:18,535 INFO [[localhost]] servletPath=/j_security_check 23:17:18,535 INFO [[localhost]] isSecure=false 23:17:18,535 INFO [[localhost]] --------------------------------------------------------------- 23:18:24,796 INFO [[localhost]] --------------------------------------------------------------- 23:18:24,796 INFO [[localhost]] authType=null 23:18:24,796 INFO [[localhost]] contentLength=-1 23:18:24,796 INFO [[localhost]] contentType=null 23:18:24,796 INFO [[localhost]] header=Location=http://localhost:8080/form-auth/restricted/SecuredPostServlet 23:18:24,797 INFO [[localhost]] message=null 23:18:24,797 INFO [[localhost]] remoteUser=null 23:18:24,797 INFO [[localhost]] status=302 23:18:24,797 INFO [[localhost]] =============================================================== 23:18:24,811 INFO [[localhost]] REQUEST URI =/form-auth/restricted/SecuredPostServlet 23:18:24,811 INFO [[localhost]] authType=null 23:18:24,811 INFO [[localhost]] characterEncoding=null 23:18:24,811 INFO [[localhost]] contentLength=-1 23:18:24,811 INFO [[localhost]] contentType=null 23:18:24,811 INFO [[localhost]] contextPath=/form-auth 23:18:24,811 INFO [[localhost]] cookie=JSESSIONID=1BF698881ED5159F6EDA8211148871B4 23:18:24,811 INFO [[localhost]] header=user-agent=Jakarta Commons-HttpClient/2.0final 23:18:24,811 INFO [[localhost]] header=host=localhost:8080 23:18:24,811 INFO [[localhost]] header=cookie=$Version=0; JSESSIONID=1BF698881ED5159F6EDA8211148871B4; $Path=/ 23:18:24,811 INFO [[localhost]] locale=en_US 23:18:24,811 INFO [[localhost]] method=GET 23:18:24,812 INFO [[localhost]] pathInfo=null 23:18:24,812 INFO [[localhost]] protocol=HTTP/1.1 23:18:24,812 INFO [[localhost]] queryString=null 23:18:24,812 INFO [[localhost]] remoteAddr=127.0.0.1 23:18:24,812 INFO [[localhost]] remoteHost=127.0.0.1 23:18:24,812 INFO [[localhost]] remoteUser=null 23:18:24,812 INFO [[localhost]] requestedSessionId=1BF698881ED5159F6EDA8211148871B4 23:18:24,812 INFO [[localhost]] scheme=http 23:18:24,812 INFO [[localhost]] serverName=localhost 23:18:24,812 INFO [[localhost]] serverPort=8080 23:18:24,812 INFO [[localhost]] servletPath=/restricted/SecuredPostServlet 23:18:24,812 INFO [[localhost]] isSecure=false 23:18:24,812 INFO [[localhost]] --------------------------------------------------------------- 23:22:16,006 ERROR [[SecuredPostServlet]] Servlet.service() for servlet SecuredPostServlet threw exception javax.servlet.ServletException: Did not find checkParam=123456 at org.jboss.test.web.servlets.SecuredPostServlet.processRequest(SecuredPostServlet.java:52) at org.jboss.test.web.servlets.SecuredPostServlet.doPost(SecuredPostServlet.java:73) at javax.servlet.http.HttpServlet.service(HttpServlet.java:637) at javax.servlet.http.HttpServlet.service(HttpServlet.java:717) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:183) at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:189) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:525) at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:90) at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:96) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102) at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:157) at org.apache.catalina.valves.RequestDumperValve.invoke(RequestDumperValve.java:151) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:325) at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:828) at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:601) at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447) at java.lang.Thread.run(Thread.java:595) 23:22:16,008 INFO [[localhost]] --------------------------------------------------------------- ============================================================================================================= The original request was POST with a parameter passed. After form auth, I see that the redirect (302) is a GET and the post data is lost.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

11:43 p.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12417891 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- Remy has to comment on the following: http://anonsvn.jboss.org/repos/jbossas/trunk/testsuite/src/main/org/jboss... The httpclient based test code is as follows: Step 1: Make a post method to a secure servlet // Submit the form to /restricted/SecuredPostServlet PostMethod servletPost = new PostMethod(baseURLNoAuth+"form-auth/restricted/SecuredPostServlet"); servletPost.addParameter("checkParam", "123456"); responseCode = httpConn.executeMethod(servletPost); Step 2: Do the form Auth - Get hold of the redirected login page. Do a post on j_security_check with username/pwd etc Step 3: (THIS IS WHERE I NEED REMY'S GUIDANCE) Currently the test code is doing a GET on the redirected url // Follow the redirect to the SecureServlet Header location = formPost.getResponseHeader("Location"); String indexURI = location.getValue(); GetMethod war1Index = new GetMethod(indexURI); responseCode = httpConn.executeMethod(war1Index.getHostConfiguration(), war1Index, state); assertTrue("Get OK", responseCode == HttpURLConnection.HTTP_OK); The question is in Step 3, should the test code submit the original POST method (that had a parameter) or the above code is fine? I am guessing that the restore request in the form authenticator should be restoring the post data?

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Jean-Frederic Clere (JIRA)

Thursday, 19 June Thu, 19 Jun

2:05 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12417897 ] Jean-Frederic Clere commented on JBAS-5645: ------------------------------------------- The first POST request servletPost is stored in TC and you get the response to it when doing responseCode = httpConn.executeMethod(war1Index.getHostConfiguration(), war1Index, state); The post data are restored in TC not in httpclient you get the response of the application which seems to be a GET...

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Jean-Frederic Clere (JIRA)

8:40 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12417969 ] Jean-Frederic Clere commented on JBAS-5645: ------------------------------------------- A Host valve is called at it calls getParameterNames() that sets the parametersParsed in org/apache/catalina/connector/Request.java the saved request is restored but the parametersParsed is not resetted. May recycling the Request in org/apache/catalina/authenticator/FormAuthenticator.java could help.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

8:46 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12417971 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- The exact same setup works in JBAS4.x. So I am trying to see if there is a bug in JBossWeb or we should be sending a POST request after the form auth success redirect, rather than GET..... Scott can provide some guidance also.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Jean-Frederic Clere (JIRA)

9:10 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12417976 ] Jean-Frederic Clere commented on JBAS-5645: ------------------------------------------- I think the problem is in JBossWEB but the Valves that are called now by JBossAS show a problem that existed for a long time.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

9:56 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418001 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- FormAuthenticator stores/restores the request via the holder called as SavedRequest. I did see code that dealt with the post data if the request method was POST. So since the saved request was of method POST, the post data should be saved too.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Jean-Frederic Clere (JIRA)

10:33 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418014 ] Jean-Frederic Clere commented on JBAS-5645: ------------------------------------------- Yes. should be... But what is saved is null in AS and ok in JBossWEB.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

10:59 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418017 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- Ok. That is what I saw yesterday when I attached a debugger to JBossWeb. The ByteChunk is not a very friendly construct in the debugger. :)

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Jean-Frederic Clere (JIRA)

1:06 p.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418040 ] Jean-Frederic Clere commented on JBAS-5645: ------------------------------------------- I have fixed it in JBossWEB trunk we need a jbossweb 2.1.1CR4

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

Friday, 20 June Fri, 20 Jun

10:51 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418224 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- JC, is the CR4 release coming soon?

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Jean-Frederic Clere (JIRA)

11:16 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418242 ] Jean-Frederic Clere commented on JBAS-5645: ------------------------------------------- I have to check with Remy on Monday but that could be done soon.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

12:24 p.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418280 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- Not an urgency,JC. If the release is done, we fix 3 tests in AS5 testsuite (we have like 58 failures)

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Sacha Labourey (JIRA)

Tuesday, 24 June Tue, 24 Jun

7:40 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418698 ] Sacha Labourey commented on JBAS-5645: -------------------------------------- Can this one be closed? as the release been done? We are Tuesday (hint)

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

9:25 a.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12418727 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- Sacha, not a showstopper for CR1.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR1 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Dimitris Andreadis (JIRA)

9:55 a.m.

New subject: [JBoss JIRA] Updated: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=all ] Dimitris Andreadis updated JBAS-5645: ------------------------------------- Fix Version/s: JBossAS-5.0.0.CR2 (was: JBossAS-5.0.0.CR1)

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR2 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Anil Saldhana (JIRA)

Tuesday, 1 July Tue, 1 Jul

1:08 p.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12419528 ] Anil Saldhana commented on JBAS-5645: ------------------------------------- JFC/Remy, release please.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR2 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Remy Maucherat (JIRA)

1:30 p.m.

New subject: [JBoss JIRA] Commented: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=comments#action_12419530 ] Remy Maucherat commented on JBAS-5645: -------------------------------------- When it's done.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR2 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

Remy Maucherat (JIRA)

Tuesday, 8 July Tue, 8 Jul

7:47 a.m.

New subject: [JBoss JIRA] Resolved: (JBAS-5645) JBossWeb losing POST data during FORM Authentication

[ http://jira.jboss.com/jira/browse/JBAS-5645?page=all ] Remy Maucherat resolved JBAS-5645. ---------------------------------- Resolution: Done It's now done.

...

JBossWeb losing POST data during FORM Authentication ---------------------------------------------------- Key: JBAS-5645 URL: http://jira.jboss.com/jira/browse/JBAS-5645 Project: JBoss Application Server Issue Type: Bug Security Level: Public(Everyone can see) Components: Web (Tomcat) service Affects Versions: JBossAS-5.0.0.Beta4 Reporter: Anil Saldhana Assigned To: Remy Maucherat Fix For: JBossAS-5.0.0.CR2 TestCase: org.jboss.test.web.test.FormAuthUnitTestCase Test: testPostDataFormAuth Somehow the form authenticator restore request is losing the post data that was submitted as part of the request before the form authentication kicked in. Remy, please validate this.

5967

days inactive

5987

days old

jboss-jira@lists.jboss.org

Manage subscription

21 comments

5 participants

tags (0)

participants (5)

Anil Saldhana (JIRA)
Dimitris Andreadis (JIRA)
Jean-Frederic Clere (JIRA)
Remy Maucherat (JIRA)
Sacha Labourey (JIRA)

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[JBoss JIRA] Created: (JBAS-5645) JBossWeb losing POST data during FORM Authentication