-
Type:
Bug
-
Status: Closed
-
Resolution: Fixed
-
Affects Version/s: 6.2.10 EE GA1, 7.0.0 M3
-
Fix Version/s: 6.2.2 CE GA3 , 6.2.X EE, 7.0.0 M1
-
Component/s: Application Security, Security Vulnerability
-
Branch Version/s:6.2.x
-
Backported to Branch:Committed
-
Story Points:8
-
Fix Priority:4
-
Git Pull Request:
When a not-logged-in user wants to see a private page and he/she failed the first login but can be logged-in after the second time, portal forgets to redirect him/her to the wanted private page.
reproduction steps
- create a private page, name it "test"
- memorize the friendly url (for example: http://localhost:8080/group/guest/test)
- log out
- try to reach the private page with your browser
(example: type: http://localhost:8080/group/guest/test into browser's address bar) - login page must appear
- write bad password
- login screen appears with an error message
- log in with good password
expected behaviour
landing on the private page (http://localhost:8080/group/guest/test)
experienced behaviour
landing on http://localhost:8080/web/guest/home
- relates
-
LPE-12495 User is not redirected upon successfully logging in after failed attempt
-
- Closed
-