[
https://issues.apache.org/jira/browse/OFBIZ-3862?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12919486#action_12919486
]
Bilgin Ibryam commented on OFBIZ-3862:
--------------------------------------
I think a soltuion would be to skip generating of new external login key for
ajax requests.
Ajax requests can be identified by presens of 'X-Requested-With':
'XMLHttpRequest', http header. It is set by most of the javascript libraries we
use: prototype, jquery.
WDYT?
Bilgin
> Ajax requests prevent externalLoginKey parameters from working correctly
> ------------------------------------------------------------------------
>
> Key: OFBIZ-3862
> URL: https://issues.apache.org/jira/browse/OFBIZ-3862
> Project: OFBiz
> Issue Type: Bug
> Components: framework
> Affects Versions: SVN trunk
> Reporter: Scott Gray
>
> A new external login key is generated for every request so if an ajax request
> fires on a page then the externalLoginKey used in any links on the page is
> invalidated.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
