[jboss-jira] [JBoss JIRA] Created: (JBAS-5851) incorrect tomcat behavior while header authorization

[Jacek Jackowski (JIRA)]

incorrect tomcat behavior while header authorization
----------------------------------------------------

                 Key: JBAS-5851
                 URL: https://jira.jboss.org/jira/browse/JBAS-5851
             Project: JBoss Application Server
          Issue Type: Bug
      Security Level: Public (Everyone can see)
          Components: Installation Guide
    Affects Versions: JBossAS-5.0.0.CR1
         Environment: Jboss 5.0.0.CR1 JDK , Java(TM) SE Runtime Environment (build 1.6.0_07-b06), kubuntu 8.04

            Reporter: Jacek Jackowski
            Assignee: Samson Kittoli


I've developed authorization on frontend apache, it works with AJP on Jboss 4.22 and even on Jboss 5 beta 4. I've upgraded server to 5.0.0.CR1 and I've found something wrong. I authoriza myself on apache then I'm forwarded by mod_proxy to jboss and I should access website without loggin but jboss shows me basic login window. User is authorized but the login window is shown, if You press cancell You'll see 403 but after page refresh You'll get the page You want to access. If I press OK without entering username and password jboss give me the page I want. User is authorized, Jboss know that but shows Basic login window. Previous versions of Jboss worked correctly.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira