[seam-issues] [JBoss JIRA] Updated: (JBSEAM-4701) Cookie path being set to empty string via getRequestContextPath forming invalid cookies in IE

Marek Novotny (JIRA) jira-events at lists.jboss.org
Fri Sep 2 04:21:26 EDT 2011


     [ https://issues.jboss.org/browse/JBSEAM-4701?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Marek Novotny updated JBSEAM-4701:
----------------------------------

               Assignee: Marek Novotny
          Fix Version/s: 2.3.0.ALPHA
    Bugzilla References: https://bugzilla.redhat.com/show_bug.cgi?id=691963  (was: https://bugzilla.redhat.com/show_bug.cgi?id=691963)
        Forum Reference: http://seamframework.org/Community/SeamTokenTagProblemCSRF  (was: http://seamframework.org/Community/SeamTokenTagProblemCSRF)


> Cookie path being set to empty string via getRequestContextPath forming invalid cookies in IE
> ---------------------------------------------------------------------------------------------
>
>                 Key: JBSEAM-4701
>                 URL: https://issues.jboss.org/browse/JBSEAM-4701
>             Project: Seam 2
>          Issue Type: Bug
>    Affects Versions: 2.1.2.GA
>            Reporter: Brian Dill
>            Assignee: Marek Novotny
>             Fix For: 2.3.0.ALPHA
>
>         Attachments: ClientUidSelector.patch
>
>
> When using <s:token /> in JSF the javax.faces.ClientToken cookie that is created can potentially have an empty ("") path which will cause it to not be accepted in some versions of Internet Explorer. The following code in ClientUidSelector is the problem.
> setCookiePath(FacesContext.getCurrentInstance().getExternalContext().getRequestContextPath());
> This bug can be manifested as "viewId: /myPage.xhtml - No client identifier provided." I'll try to post a patch file here asap.

--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira

        


More information about the seam-issues mailing list