[jboss-jira] [JBoss JIRA] Commented: (JBWEB-119) After repeated authentication tomcat again sends page with login form instead of protected static resource
Remy Maucherat (JIRA)
jira-events at lists.jboss.org
Thu Sep 4 12:59:01 EDT 2008
[ https://jira.jboss.org/jira/browse/JBWEB-119?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12428291#action_12428291 ]
Remy Maucherat commented on JBWEB-119:
--------------------------------------
Tomcat 6.0.16 fixed 43687, not 6.0.14 (as listed in the Tomcat changelog). JBoss Web 2.1.0+ has the fix (included in AS 5, but not in older releases).
> After repeated authentication tomcat again sends page with login form instead of protected static resource
> ----------------------------------------------------------------------------------------------------------
>
> Key: JBWEB-119
> URL: https://jira.jboss.org/jira/browse/JBWEB-119
> Project: JBoss Web
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: Tomcat
> Reporter: Scott M Stark
> Assignee: Remy Maucherat
>
> There was a form-based authentication bug in Tomcat 6.0.10 code that was corrected in version 6.0.14. In particular, a FireFox user would be displayed the login form again instead of the correct requested resource AFTER authentication was successful. This was reported as Tomcat Bug 43687 (https://issues.apache.org/bugzilla/show_bug.cgi?id=43687).
> Which version does this apply to, if any, and what version of jbossweb is this fixed in?
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list