ZZZ: PUBLIC - Old Liferay Portal (Use Liferay Portal Standard Edition)

Cookie values not properly read/returned

Details

  • Type: Bug Bug
  • Status: Closed Closed
  • Priority: Minor Minor
  • Resolution: Won't Fix
  • Affects Version/s: 4.3.6, 4.4.1
  • Fix Version/s: None
  • Component/s: None
  • Labels:
    None
  • Environment:
    tomcat 5.5, Oracle Application Server 10g, Oracle 10g Database, Windows 2003 Server, Windows XP SP2. Internet Explorer 6, Firefox 2
  • Similar Issues:
    Show 5 results 

Description

OpenSSO cookie iPlanetDirectoryPro value is not properly read.

Example:
Value stored in cookie: AQIC5wM2LY4SfczXZ/Euh1QOCgCApKzewi3x6uGUC1P736w=@AAJTSQACMDE=#

Value returned from cookie.value(): AQIC5wM2LY4SfczXZ/Euh1QOCgCApKzewi3x6uGUC1P736w

Activity

Ascending order - Click to sort in descending order
Hide
Permalink
Minhchau Dang added a comment -

With Tomcat 5.5.26 and Tomcat 6.0.16, Tomcat becomes the first application server with strict compliance for the cookie specification. To read more on the issue, you can check the tomcat-dev mailing list: http://marc.info/?t=120253944500001

Show
Minhchau Dang added a comment - With Tomcat 5.5.26 and Tomcat 6.0.16, Tomcat becomes the first application server with strict compliance for the cookie specification. To read more on the issue, you can check the tomcat-dev mailing list: http://marc.info/?t=120253944500001
Hide
Permalink
john wang added a comment -

Yea. I understand that. We actually figured out how to get by that. There's an option to set the cookie value to be URL encoded in OpenSSO's server security manager.

However, I've been trying to figure out why the OpenSSO doesn't work with Liferay and the code that Brian integrated from Prashad. Well, I started outputting all of the cookies and session variables that are to be created and the Session variable OPEN_SSO_LOGIN isn't being created after entering the correct information in the OpenSSO section in the Enterprise Admin. The Sign-in button redirects me to the OpenSSO login page, I log in then it redirects me back to Liferay Portal. But not logged in or with the new user created as the code should be doing. The cookie is properly set. E-mail address is entered along with all the other required information. Seems the filter for OpenSSO is not being called or is failing to create the session variable and create/log in the user.

Show
john wang added a comment - Yea. I understand that. We actually figured out how to get by that. There's an option to set the cookie value to be URL encoded in OpenSSO's server security manager. However, I've been trying to figure out why the OpenSSO doesn't work with Liferay and the code that Brian integrated from Prashad. Well, I started outputting all of the cookies and session variables that are to be created and the Session variable OPEN_SSO_LOGIN isn't being created after entering the correct information in the OpenSSO section in the Enterprise Admin. The Sign-in button redirects me to the OpenSSO login page, I log in then it redirects me back to Liferay Portal. But not logged in or with the new user created as the code should be doing. The cookie is properly set. E-mail address is entered along with all the other required information. Seems the filter for OpenSSO is not being called or is failing to create the session variable and create/log in the user.
Hide
Permalink
Prashant Dighe added a comment - - Restricted to

This works on tomcat 6.0.18 by setting cookie encode to true.
See http://www.liferay.com/web/prashant/blog/-/blogs/opensso-integration-on-tomcat-6-0-18

Show
Prashant Dighe added a comment - - Restricted to This works on tomcat 6.0.18 by setting cookie encode to true. See http://www.liferay.com/web/prashant/blog/-/blogs/opensso-integration-on-tomcat-6-0-18
Hide
Permalink
Prashant Dighe added a comment -

OpenSSO fixed this in their latest release.

Show
Prashant Dighe added a comment - OpenSSO fixed this in their latest release.

People

  • Assignee:
    Prashant Dighe
    Reporter:
    john wang
Vote (1)
Watch (0)

Dates

  • Created:
    Updated:
    Resolved: