is there a bug tracker publicly available for acegi?
n.s.a.ui.AbstractProcessingFilter wants to store an exception on the
session:
protected void unsuccessfulAuthentication(HttpServletRequest request,
HttpServletResponse response,
AuthenticationException failed)
throws IOException {
...
request.getSession().setAttribute(ACEGI_SECURITY_LAST_EXCEPTION_KEY,
failed);
}
but the exception may not be Serializable. AuthenticationException
itself claims to implement Serialziable, but it is apparently holding
onto a reference (probably via a 'rootCause' reference) to something
that isn't serializable.
in the logs:
[14:07:22.035] Failed storing persistent session attribute
`ACEGI_SECURITY_LAST_EXCEPTION'. Persistent session values must extend
java.io.Serializable.
[14:07:22.035] java.io.NotSerializableException: com.sun.jndi.ldap.LdapCtx
my own recommendation, fwiw, would be to just remove this bit.
--
joe
-------------------------------------------------------
This SF.Net email is sponsored by: NEC IT Guy Games. How far can you shotput
a projector? How fast can you ride your desk chair down the office luge track?
If you want to score the big prize, get to know the little guy.
Play to win an NEC 61" plasma display: http://www.necitguy.com/?r=20
_______________________________________________
Home: http://acegisecurity.sourceforge.net
Acegisecurity-developer mailing list
Acegisecurity-developer@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/acegisecurity-developer
