[undertow-dev] loginPage and security constraints
Stuart Douglas
sdouglas at redhat.com
Mon Aug 19 09:54:10 EDT 2013
At the moment the code assumes the login and error pages are outside the secured area.
It think it makes sense to change this so that the login and error pages are never secure.
Stuart
----- Original Message -----
> From: "Bill Burke" <bburke at redhat.com>
> To: undertow-dev at lists.jboss.org
> Sent: Saturday, 17 August, 2013 7:30:30 PM
> Subject: [undertow-dev] loginPage and security constraints
>
> If you have a authentication security constraint set to "/*", how do you
> make sure you don't have an infinite redirect loop with the loginPage?
>
> --
> Bill Burke
> JBoss, a division of Red Hat
> http://bill.burkecentral.com
> _______________________________________________
> undertow-dev mailing list
> undertow-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/undertow-dev
>
More information about the undertow-dev
mailing list