Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-35884

${originalurl} does not include server base url for attachment urls

XMLWordPrintable

      seraph-config.xml
      <security-config>
	<parameters>
		<init-param>
			<param-name>login.url</param-name>
			<!--<param-value>/login.action?os_destination=${originalurl}</param-value>-->
            <param-value>http://sso.example.com/?lastPage=${originalurl}</param-value>
		</init-param>

      If a user is NOT authenticated via SSO and visits this Confluence link:

      https://confluence.example.com/pages/viewpage.action?pageId=123456
      a 302 redirect to
      https://sso.example.com/?lastPage=https%3A%2F%2Fconfluence.example.com%2Fpages%2Fviewpage.action%3FpageId%3D123456 is triggered, which leads the user to the SSO login and then back to the desired Confluence page, good.

      However, if the user instead visits an attachment link like:

      https://confluence.example.com/download/attachments/123456/example.PNG?api=v2 a 302 redirect to
      https://sso.example.com/?lastPage=%2Fdownload%2Fattachments%2F123456%2Fexample.PNG%3Fapi%3Dv2 is triggered but the server base url is missing, hence there is no way to redirect the user back to the attachment after a successfull login with SSO.

      I suppose, that this is related to CONF-29144.

              xtaixe Xavier Sanchez (Inactive)
              81c14a335458 Tim
              Votes:
              4 Vote for this issue
              Watchers:
              8 Start watching this issue

                Created:
                Updated:
                Resolved: