[jira] Created: (OFBIZ-3862) Ajax requests prevent externalLoginKey parameters from working correctly

Ajax requests prevent externalLoginKey parameters from working correctly
------------------------------------------------------------------------

                 Key: OFBIZ-3862
                 URL: https://issues.apache.org/jira/browse/OFBIZ-3862
             Project: OFBiz
          Issue Type: Bug
          Components: framework
    Affects Versions: SVN trunk
            Reporter: Scott Gray


A new external login key is generated for every request so if an ajax request fires on a page then the externalLoginKey used in any links on the page is invalidated.

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

    [ https://issues.apache.org/jira/browse/OFBIZ-3862?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12892068#action_12892068 ]

Scott Gray commented on OFBIZ-3862:
-----------------------------------

To clarify, the problem only occurs if the ajax call results in a screen being rendered since it is the ScreenRenderer that causes a new key to be generated.

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

    [ https://issues.apache.org/jira/browse/OFBIZ-3862?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12919486#action_12919486 ]

Bilgin Ibryam commented on OFBIZ-3862:
--------------------------------------

I think a soltuion would be to skip generating of new external login key for ajax requests.
Ajax requests can be identified by presens of 'X-Requested-With': 'XMLHttpRequest', http header. It is set by most of the javascript libraries we use: prototype, jquery.

WDYT?
Bilgin

--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.