Uploaded image for project: 'Confluence Data Center'
  1. Confluence Data Center
  2. CONFSERVER-39068

"Edit in Word" using path based authentication is broken in Confluence 3.3.x and above

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • High
    • None
    • None
    • None

    Description

      NOTE: This bug report is for Confluence Server. Using Confluence Cloud? See the corresponding bug report.

      In the standalone distribution of Confluence 3.3.x and above the session cookie is sent using the HttpOnly attribute.
      This breaks the following Javascript that is used to rewrite the path for the "Edit in Word" feature.

      Zen/src/main/resources/templates/extra/editinword/editInOffice.js:

      function getCookie( check_name ) {
    // first we'll split this cookie up into name/value pairs
    // note: document.cookie only returns name=value, not the other components
    var a_all_cookies = document.cookie.split( ';' );

      For HttpOnly cookies document.cookies returns null and jsessionid in the filterPath function is null. 

      function filterPath(urlPath)
{
    var jsession = getCookie('jsessionid');
    if (!jsession){
        jsession = getCookie('JSESSIONID');
    }
    if (jsession){

      Workaround

      Please see http://confluence.atlassian.com/display/CONFKB/%27Edit+in+Word%27+Requires+Login+or+Doesn%27t+Work+at+All for a workaround.

      Attachments

        Issue Links

          details

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-21505 "Edit in Word" is broken in Confluence 3.3.x and above

          • Medium - Medium priority issues
          • Closed
          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-39136 OCAuth is not appended to the URL when 'Allow authentication tokens in the URL path' is enabled.

          • Medium - Medium priority issues
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-21636 Edit in Word does not work with Office 2010 in browsers other then IE when 'Allow authentication tokens in the URL path' is disabled

          • Low - Low priority issues
          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. CONFCLOUD-39068 "Edit in Word" using path based authentication is broken in Confluence 3.3.x and above

          • High - High priority issues
          • Closed

          Bug - A problem which impairs or prevents the functions of the product. CONFSERVER-39126 Office 2010 will not work with the Office Connector unless you use Internet Explorer if URL path authentication is disabled

          • Low - Low priority issues
          • Closed

          Activity

            People

              Unassigned Unassigned
              ssaasen Stefan Saasen (Inactive)
              Votes:
              2 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: