Details
Description
Normally, with form-based authentication, the credentials are stored in the session and subsequent requests can access secured resources. However, when such a session expires, the next resource request is "remembered" by the container while the login form is presented. If proper credentials are provided, the container makes an attempt to redirect to the originally requested resource. However, with ICEfaces, the cached request appears to be dispose-views:
http://[host]:[port]/[context]/block/dispose-views
Of course, this doesn't return anything useful.
http://[host]:[port]/[context]/block/dispose-views
Of course, this doesn't return anything useful.
Activity
Ken Fyten
made changes -
Status | Resolved [ 5 ] | Closed [ 6 ] |
Assignee | Deryk Sinotte [ deryk.sinotte ] |
Ken Fyten
made changes -
Status | Open [ 1 ] | Resolved [ 5 ] |
Fix Version/s | 1.8.2 [ 10190 ] | |
Assignee Priority | P1 | |
Resolution | Fixed [ 1 ] |
Repository | Revision | Date | User | Message |
ICEsoft Public SVN Repository | #19264 | Wed Sep 16 09:21:16 MDT 2009 | ted.goddard | added sessionExpiredServerRedirect ( |
Files Changed | ||||
MODIFY
/icefaces/trunk/icefaces/core/src/com/icesoft/faces/webapp/http/servlet/MainSessionBoundServlet.java
MODIFY /icefaces/trunk/icefaces/core/src/com/icesoft/faces/webapp/http/core/RequestVerifier.java MODIFY /icefaces/trunk/icefaces/core/src/com/icesoft/faces/webapp/http/core/SessionExpiredResponse.java |
Ted Goddard
made changes -
Attachment | core-changes.zip [ 11992 ] |
Deryk Sinotte
made changes -
Field | Original Value | New Value |
---|---|---|
Environment | secure | secure security |
Salesforce Case | [50070000009f5FA] | |
Assignee Priority | P1 | |
Assignee | Deryk Sinotte [ deryk.sinotte ] |
Deryk Sinotte
created issue -
Ok, I have the feeling that my situation is a bit more complicated... although it might be related somehow with this problem.
SSL connection works fine using 'direct internet' connection, but it keeps on expiring when I access the application through an http proxy. The public part works also behind the proxy, but not the secured. After some refresh I can do something, but the session expires very fast. Are you aware of any SSL + Proxy issue?