You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shiro.apache.org by "Luis Arias (JIRA)" <ji...@apache.org> on 2009/02/06 16:33:59 UTC

[jira] Updated: (JSEC-56) rememberMe cookie value is sometimes sent without appropriate base64 padding

     [ https://issues.apache.org/jira/browse/JSEC-56?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Luis Arias updated JSEC-56:
---------------------------

    Attachment: base64padding_problem.patch

You'll notice in the test case that the only difference with the getRememberedPrincipals test is there is a missing = at the end of the cookie value.

> rememberMe cookie value is sometimes sent without appropriate base64 padding
> ----------------------------------------------------------------------------
>
>                 Key: JSEC-56
>                 URL: https://issues.apache.org/jira/browse/JSEC-56
>             Project: JSecurity
>          Issue Type: Bug
>          Components: Web
>            Reporter: Luis Arias
>         Attachments: base64padding_problem.patch
>
>
> I experienced this issue this morning (easily visible with Firebug).  I am supplying a patch with a fix and unit test.  It might be better to be safe to encode the remember me cookie value as ascii hex instead of base64 instead.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.