Details
-
Bug
-
Resolution: Timed out
-
Low
-
None
-
3.9.1
-
3.09
-
Severity 3 - Minor
-
-
Description
The <jira:loginlink/> taglib doesn't seem to keep additional parameters of an original URL (e.g. os_destination=/secure/AddComment.jspa?). This gives trouble when someone tries to re-login to perform a previously rejected action, for instance, "re-login to comment".
It seems like the SecurityFilter.ORIGINAL_URL value is not correctly stored.
private static String getOriginalURL(HttpServletRequest request, boolean external) { String originalURL = (String) request.getAttribute(SecurityFilter.ORIGINAL_URL); ...
For the given example above, a user will see an "Unable to perform action - Error - The issue no longer exists." page after he has re-logged in.
Attachments
Issue Links
- relates to
-
JRASERVER-12839 When session expires and a login is forced the add commet operation loses the original comment text
- Closed