Required double logon

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 6.1.0 CE GA1, 6.1.1 CE GA2, 6.1.20 EE GA2
Fix Version/s: 6.1.X EE, 6.2.0 CE M3
Component/s: API, API > JavaScript, Util > Login portlet
Labels:
- QA-R

Branch Version/s:

6.1.x
Backported to Branch:

Committed

Similar Issues:

Show 5 results

Description

When user visits portal for the first time he has no cookies. Page contains form with action which points to this address:
http://portal.xyz.com/home;jsessionid=9753D48D80F404FC20139B21C1B3ED39?p_auth=rvlO1kbY...
Unfortunately this address is not recognized by server, returns 404
The same address without ;sessionid= works OK.

So when user enter login data for the first time, browser gets 404 error page with automatic redirection to address /c. Now user see login page again (form action is without ;jsessionid=) and now has to enter login data again and it works.

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

Juraj Lonc added a comment - 12/Mar/12 3:17 AM

In addidion:
when user disables cookie support (;jsessionid= is appended to every local url) is unable to use portal.
after user's login try is browser in endless loop of redirections:

/home;jsessionid=26081D618B690ADC6919E800FF5E41AD (server's response is 404)
/c;jsessionid=26081D618B690ADC6919E800FF5E41AD (this is redirection on 404 error page)
/home;jsessionid=26081D618B690ADC6919E800FF5E41AD
/c;jsessionid=26081D618B690ADC6919E800FF5E41AD
/home;jsessionid=26081D618B690ADC6919E800FF5E41AD
/c;jsessionid=26081D618B690ADC6919E800FF5E41AD
and so on...

Show

Juraj Lonc added a comment - 12/Mar/12 3:17 AM In addidion: when user disables cookie support (;jsessionid= is appended to every local url) is unable to use portal. after user's login try is browser in endless loop of redirections: /home;jsessionid=26081D618B690ADC6919E800FF5E41AD (server's response is 404) /c;jsessionid=26081D618B690ADC6919E800FF5E41AD (this is redirection on 404 error page) /home;jsessionid=26081D618B690ADC6919E800FF5E41AD /c;jsessionid=26081D618B690ADC6919E800FF5E41AD /home;jsessionid=26081D618B690ADC6919E800FF5E41AD /c;jsessionid=26081D618B690ADC6919E800FF5E41AD and so on...

Hide

Permalink

Marc Champion added a comment - 12/Apr/12 2:43 AM

A workaround for the double logon problem is to set

session.enable.url.with.session.id=false

but then obviously the portal cannot be used when cookies are disabled in the browser.

Show

Marc Champion added a comment - 12/Apr/12 2:43 AM A workaround for the double logon problem is to set session.enable.url.with.session.id=false but then obviously the portal cannot be used when cookies are disabled in the browser.

Hide

Permalink

Tammy Fong added a comment - 03/Dec/12 1:53 PM

Committed on:
Portal 6.2.x GIT ID: 7944b359bb4cd3689d3eae414e42b1e3cbc11eba.

Show

Tammy Fong added a comment - 03/Dec/12 1:53 PM Committed on: Portal 6.2.x GIT ID: 7944b359bb4cd3689d3eae414e42b1e3cbc11eba.

People

Assignee:

Mark Jin

Reporter:

Juraj Lonc

Participants of an Issue:

Juraj Lonc, Marc Champion, Mark Jin, Tammy Fong

Vote (2)

Watch (4)

Dates

Created:

12/Mar/12 2:51 AM

Updated:

26/Mar/13 11:36 AM

Resolved:

27/Feb/13 10:30 AM

Days since last comment:

24 weeks, 5 days ago

Agile

View on Board

LPS-27394	AD query search should change when changing Liferay fields for logon.
~~LPS-22507~~	Dynamic data list name gets double
~~LPS-23213~~	Disabling "Changed Required" in the Default Password Policy has no effect
~~LPS-15436~~	doubling in list web content
~~LPS-18199~~	JS file path has double forward slash