PQ59684: WITH SECURITY ON, AND PASSING THE SECURITY CHALLENGE, THE RETURN URL IS NOT CORRECT WHEN THE SERVLET IS IN A SUBDIRECTORY

APAR status
Closed as program error.

Error description
The customer requests the following URL:

http://mburati02:9080/bowstreet5/webengine/factory/admin/Factory
Admin
After successfully logging in, it incorrectly redirects to the
following mangled URL:

http://mburati02:9080/bowstreet5/webengine/factory/admin/Factory
Admin/factory/admin/FactoryAdmin
Local fix
Make sure that the requested servlet is accessible from the
context root of the webapp.
Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server developers      *
*                 using Form Login based security.             *
****************************************************************
* PROBLEM DESCRIPTION: Form login redirection fails when       *
*                      security is enabled.                    *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
When Form Login based security is enabled, the originally
requested url is not properly sent to the client if the form
login page is located in a directory different than
the originally requested url.
Problem conclusion
Modified the storing of the originally requested url to
properly handle whether the redirect should be relative
to the context root of the web module or the web server.
Temporary fix
//wasdoc0/apars/pq59684/4.0.2_4.0.3
Comments
APAR information
APAR number PQ59684
Reported component name WEBSPHERE AE NT
Reported component ID 5630A2201
Reported release 400
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Submitted date 2002-04-02
Closed date 2002-04-08
Last modified date 2002-05-17

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
ENGINE          

Fix information
Fixed component name WEBSPHERE AE NT
Fixed component ID 5630A2201

Applicable component levels
R400 PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ59684
IBM Group: Software Group
Modified date: May 17, 2002