Uploaded image for project: 'Jetspeed 2'
  1. Jetspeed 2
  2. JS2-496

J2 on tomcat 5.5.15: 403 returned to client browser when any user that doesn't have admin role attempts to log in

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.0-FINAL
    • 2.1-dev, 2.1
    • Security
    • None
    • Tomcat 5.5.15 (JDK 1.5, Apache 2, Fedora Core 3)

    Description

      When J2 is deployed on tomcat 5.5.15, whenever any user that does not have the admin role logs in, a 403 is returned for the URI /login/redirector.

      This does not occur on earlier releases of tomcat (5.5.9 for example).

      The user is in fact authenticated, for if you delete the /login/redirector from the URL in the browser and refresh, then the main page of the portal is shown and the user is authenticated.

      Attachments

        Activity

          People

            rwatler W. Randall Watler
            aaronmevans Aaron Evans
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: