Cookie error when authenticating on jboss wildfly
I am trying to port an app from jboss 7.1 to wildfly.
But I am getting the following error after I login:
21:29:54,295 ERROR [io.undertow.request] (default task-56) Servlet request
failed HttpServerExchange{ POST /oviyam/j_security_check}:
java.lang.IllegalArgumentException: Cookie name "Dark%20Hive; JSESSIONID"
is a reserved token
at javax.servlet.http.Cookie.<init>(Cookie.java:192)
[jboss-servlet-api_3.1_spec-1.0.0.Beta1.jar:1.0.0.Beta1]
at
io.undertow.servlet.spec.HttpServletRequestImpl.getCookies(HttpServletRequestImpl.java:139)
[undertow-servlet-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.servlet.handlers.security.ServletFormAuthenticationMechanism.handleRedirectBack(ServletFormAuthenticationMechanism.java:63)
[undertow-servlet-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.impl.FormAuthenticationMechanism.runFormAuth(FormAuthenticationMechanism.java:118)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.impl.FormAuthenticationMechanism.authenticate(FormAuthenticationMechanism.java:81)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.impl.SecurityContextImpl$AuthAttempter.transition(SecurityContextImpl.java:279)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.impl.SecurityContextImpl$AuthAttempter.transition(SecurityContextImpl.java:296)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.impl.SecurityContextImpl$AuthAttempter.access$100(SecurityContextImpl.java:266)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.impl.SecurityContextImpl.attemptAuthentication(SecurityContextImpl.java:131)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.impl.SecurityContextImpl.authTransition(SecurityContextImpl.java:106)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.impl.SecurityContextImpl.authenticate(SecurityContextImpl.java:99)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.handlers.AuthenticationCallHandler.handleRequest(AuthenticationCallHandler.java:50)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.handlers.AuthenticationConstraintHandler.handleRequest(AuthenticationConstraintHandler.java:51)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:45)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.servlet.handlers.security.ServletSecurityConstraintHandler.handleRequest(ServletSecurityConstraintHandler.java:55)
[undertow-servlet-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:58)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:65)
[undertow-servlet-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.security.handlers.SecurityInitialHandler.handleRequest(SecurityInitialHandler.java:70)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:25)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
org.wildfly.extension.undertow.security.SecurityContextCreationHandler.handleRequest(SecurityContextCreationHandler.java:54)
at
io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:25)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:185)
[undertow-servlet-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:172)
[undertow-servlet-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:56)
[undertow-servlet-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:107)
[undertow-servlet-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.server.HttpHandlers.executeRootHandler(HttpHandlers.java:36)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:629)
[undertow-core-1.0.0.Beta3.jar:1.0.0.Beta3]
at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1145)
[rt.jar:1.7.0_21]
at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:615)
[rt.jar:1.7.0_21]
at java.lang.Thread.run(Thread.java:722) [rt.jar:1.7.0_21]
This does work properly on 7.1. Any ideas? From what I've read, it looks
like a semicolon is not legal in a cookie.
Thanks, Aaron
No comments:
Post a Comment