[seam-issues] [JBoss JIRA] Created: (SEAMSECURITY-56) OpenID RP login doesn't reset authentication state on failure

Patrick McFarland (JIRA) Wed, 06 Apr 2011 22:59:41 -0700

OpenID RP login doesn't reset authentication state on failure
-------------------------------------------------------------


                 Key: SEAMSECURITY-56
                 URL: https://issues.jboss.org/browse/SEAMSECURITY-56
             Project: Seam Security
          Issue Type: Bug
            Reporter: Patrick McFarland


Currently, the OpenID RP example doesn't reset the authentication state on 
failure to authenticate.

Go to the login form, select MyOpenID, hit login, hit cancel while on the 
MyOpenID site, you will be redirected to the AuthenticationFailed.xhtml; from 
there, go back to the login form and try logging in.

This will produce an exception that is logged only (you are redirected back to 
the login form, which now works): ERROR [org.jboss.seam.security.IdentityImpl] 
Login failed: java.lang.IllegalStateException: Authentication already in 
progress.


--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
_______________________________________________
seam-issues mailing list
[email protected]
https://lists.jboss.org/mailman/listinfo/seam-issues

[seam-issues] [JBoss JIRA] Created: (SEAMSECURITY-56) OpenID RP login doesn't reset authentication state on failure

Reply via email to