FORM authentication not working for URL encoded session IDs ----------------------------------------------------------- Key: ELY-1950 URL: https://issues.redhat.com/browse/ELY-1950 Project: WildFly Elytron Issue Type: Bug Components: HTTP Reporter: Darran Lofthouse Assignee: Darran Lofthouse Priority: Major Fix For: 1.12.0.CR2 The session IDs are encoded as: - {code} /secure/j_security_check;jsessionid=kVzsBG9c3XxcOlzpa65ohiMeMNqXdSNQuOdvdpR3.flame {code} However the code that checks if this is a submission to j_security_check is: - {code:java} request.getRequestURI().getPath().endsWith(postLocation) {code} This code needs to trim the path at ';'