[
https://issues.apache.org/jira/browse/OFBIZ-10047?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16293761#comment-16293761 ]
James Yong commented on OFBIZ-10047:
------------------------------------
If [
https://localhost:8443/catalog/control/login?USERNAME=admin&PASSWORD=ofbiz&JavaScriptEnabled=Y] is accessed when the user is already authenticated, the following error is thrown:
{code}
2017-12-15 23:10:45,120 |jsse-nio-8443-exec-7 |LoginWorker |I| Setting default delegator
javax.servlet.ServletException: This request has already been authenticated
at org.apache.catalina.connector.Request.login(Request.java:2750)
at org.apache.catalina.connector.RequestFacade.login(RequestFacade.java:1073)
at javax.servlet.http.HttpServletRequestWrapper.login(HttpServletRequestWrapper.java:365)
at org.apache.ofbiz.common.login.LoginServices.TomcatSSOLogin(LoginServices.java:1039)
at org.apache.ofbiz.common.login.LoginServices.userLogin(LoginServices.java:218)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at org.apache.ofbiz.service.engine.StandardJavaEngine.serviceInvoker(StandardJavaEngine.java:100)
at org.apache.ofbiz.service.engine.StandardJavaEngine.runSync(StandardJavaEngine.java:57)
at org.apache.ofbiz.service.ServiceDispatcher.runSync(ServiceDispatcher.java:400)
at org.apache.ofbiz.service.ServiceDispatcher.runSync(ServiceDispatcher.java:228)
at org.apache.ofbiz.service.GenericDispatcherFactory$GenericDispatcher.runSync(GenericDispatcherFactory.java:88)
at org.apache.ofbiz.webapp.control.LoginWorker.login(LoginWorker.java:430)
{code}
In this case, the TomcatSSOLogin function will still return a false for unsuccessfully login and causing the symptoms described in OFBIZ-10057.
What should be the correct way for OFBiz to handle login when user is already authenticated?
> Tomcat SSO
> ----------
>
> Key: OFBIZ-10047
> URL:
https://issues.apache.org/jira/browse/OFBIZ-10047> Project: OFBiz
> Issue Type: Improvement
> Components: framework
> Affects Versions: Trunk
> Reporter: James Yong
> Assignee: James Yong
> Priority: Minor
> Attachments: OFBIZ-10047.patch, OFBIZ-10047.patch
>
>
> Proposing Tomcat SSO to be used in OFBiz to improve on Single-Sign-On.
> This aim to fix the issues mentioned in OFBIZ-6963, OFBIZ-6994.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
Locked
