You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@tomcat.apache.org by bu...@apache.org on 2004/03/17 19:57:27 UTC

DO NOT REPLY [Bug 27754] New: - FormAuthenticator and timed out (destroyed) session

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=27754>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=27754

FormAuthenticator and timed out (destroyed) session

           Summary: FormAuthenticator and timed out (destroyed) session
           Product: Tomcat 5
           Version: 5.0.19
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: Normal
          Priority: Other
         Component: Catalina
        AssignedTo: tomcat-dev@jakarta.apache.org
        ReportedBy: w.zitzelsberger@javasoft.de


When using a login page with the formlogin method and the page is displayed
until the current session timed out - after pressing login button I'll getting a
formlogin error.
The cause is the FormAuthenticator class which cannot handle the destroyed session.
        if (requestURI == null)
        {
           hres.sendError(HttpServletResponse.SC_BAD_REQUEST,
                          sm.getString("authenticator.formlogin"));
...

Regards,
  Wolfgang

---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-dev-unsubscribe@jakarta.apache.org
For additional commands, e-mail: tomcat-dev-help@jakarta.apache.org