Author: jleroux
Date: Fri Jan 11 16:27:03 2019 New Revision: 1851075 URL: http://svn.apache.org/viewvc?rev=1851075&view=rev Log: "Applied fix from trunk for revision: 1851074 " ------------------------------------------------------------------------ r1851074 | jleroux | 2019-01-11 17:26:13 +0100 (ven. 11 janv. 2019) | 17 lignes Fixed: Correct behaviour of Autologin cookies (OFBIZ-10635) In the method to set the autoLogin cookie, LoginWorker::autoLoginSet, system fetches the webAppInfo by using the method ComponentConfig::getWebappInfo. In this method, serverId and applicationName are passed as arguments. *WebappInfo webappInfo = ComponentConfig.getWebappInfo((String) context.getAttribute("_serverId"), UtilHttp.getApplicationName(request));* If the mount-point of the web app is set as an empty string, then 'root' will be used as the application name, due to which the object webAppInfo will come null. If the webAppInfo is null then the autoLogin cookie will not be created and added to the response object by the system. Thanks: Aditya for report and Mathieu Lirzin for discussion ------------------------------------------------------------------------ Modified: ofbiz/ofbiz-framework/branches/release18.12/ (props changed) ofbiz/ofbiz-framework/branches/release18.12/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/LoginWorker.java Propchange: ofbiz/ofbiz-framework/branches/release18.12/ ------------------------------------------------------------------------------ --- svn:mergeinfo (original) +++ svn:mergeinfo Fri Jan 11 16:27:03 2019 @@ -10,4 +10,4 @@ /ofbiz/branches/json-integration-refactoring:1634077-1635900 /ofbiz/branches/multitenant20100310:921280-927264 /ofbiz/branches/release13.07:1547657 -/ofbiz/ofbiz-framework/trunk:1850015,1850023,1850530,1850647,1850685,1850694,1850711,1850918,1850921,1850948,1850953,1851006,1851013,1851068 +/ofbiz/ofbiz-framework/trunk:1850015,1850023,1850530,1850647,1850685,1850694,1850711,1850918,1850921,1850948,1850953,1851006,1851013,1851068,1851074 Modified: ofbiz/ofbiz-framework/branches/release18.12/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/LoginWorker.java URL: http://svn.apache.org/viewvc/ofbiz/ofbiz-framework/branches/release18.12/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/LoginWorker.java?rev=1851075&r1=1851074&r2=1851075&view=diff ============================================================================== --- ofbiz/ofbiz-framework/branches/release18.12/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/LoginWorker.java (original) +++ ofbiz/ofbiz-framework/branches/release18.12/framework/webapp/src/main/java/org/apache/ofbiz/webapp/control/LoginWorker.java Fri Jan 11 16:27:03 2019 @@ -923,13 +923,16 @@ public class LoginWorker { HttpSession session = request.getSession(); GenericValue userLogin = (GenericValue) session.getAttribute("userLogin"); ServletContext context = request.getServletContext(); - WebappInfo webappInfo = ComponentConfig.getWebappInfo((String) context.getAttribute("_serverId"), UtilHttp.getApplicationName(request)); + String applicationName = UtilHttp.getApplicationName(request); + WebappInfo webappInfo = ComponentConfig.getWebappInfo((String) context.getAttribute("_serverId"), applicationName); - if (userLogin != null && webappInfo != null && webappInfo.isAutologinCookieUsed()) { + if (userLogin != null && + (webappInfo != null && webappInfo.isAutologinCookieUsed()) + || webappInfo == null) { // When using an empty mounpoint, ie using root as mounpoint. Beware: works only for 1 webapp! Cookie autoLoginCookie = new Cookie(getAutoLoginCookieName(request), userLogin.getString("userLoginId")); autoLoginCookie.setMaxAge(60 * 60 * 24 * 365); autoLoginCookie.setDomain(EntityUtilProperties.getPropertyValue("url", "cookie.domain", delegator)); - autoLoginCookie.setPath("/" + UtilHttp.getApplicationName(request).replaceAll("/","_")); + autoLoginCookie.setPath("/" + applicationName.replaceAll("/","_")); autoLoginCookie.setSecure(true); autoLoginCookie.setHttpOnly(true); response.addCookie(autoLoginCookie); |
Free forum by Nabble | Edit this page |