[jboss-jira] [JBoss JIRA] (JBWEB-314) FormAuthenticator duplicates original request GET parameters
richard groote (JIRA)
issues at jboss.org
Wed Aug 10 01:35:00 EDT 2016
[ https://issues.jboss.org/browse/JBWEB-314?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13277070#comment-13277070 ]
richard groote commented on JBWEB-314:
--------------------------------------
A customer of our organization has this problem on Jboss EAP 6.4.
When calling a secure URL (web.xml / security constraints) and the URL contains request parameters than after the successful login the request parameters are duplicated.
We created a solution for our customer by extending the FormAuthenticator and applied the patched described in this issue.
> FormAuthenticator duplicates original request GET parameters
> ------------------------------------------------------------
>
> Key: JBWEB-314
> URL: https://issues.jboss.org/browse/JBWEB-314
> Project: JBoss Web
> Issue Type: Bug
> Reporter: Dominik Pospisil
> Assignee: Remy Maucherat
> Attachments: FormAuthenticator.diff
>
>
> The FormAuthenticator duplicates original request GET parameters. This is a regression since rev. 2320.
> The FormAuth does saved.addParameter(name, val) which results in parameter value stored twice.
> request.getParameter(String name) retutns the original value which is fine
> but request.getParameterValues(String name) returns String[] {val,val} incorrectly.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list