You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@shiro.apache.org by "Luis Arias (JIRA)" <ji...@apache.org> on 2009/02/06 16:33:59 UTC
[jira] Updated: (JSEC-56) rememberMe cookie value is sometimes sent
without appropriate base64 padding
[ https://issues.apache.org/jira/browse/JSEC-56?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Luis Arias updated JSEC-56:
---------------------------
Attachment: base64padding_problem.patch
You'll notice in the test case that the only difference with the getRememberedPrincipals test is there is a missing = at the end of the cookie value.
> rememberMe cookie value is sometimes sent without appropriate base64 padding
> ----------------------------------------------------------------------------
>
> Key: JSEC-56
> URL: https://issues.apache.org/jira/browse/JSEC-56
> Project: JSecurity
> Issue Type: Bug
> Components: Web
> Reporter: Luis Arias
> Attachments: base64padding_problem.patch
>
>
> I experienced this issue this morning (easily visible with Firebug). I am supplying a patch with a fix and unit test. It might be better to be safe to encode the remember me cookie value as ascii hex instead of base64 instead.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.