version: tomcat 4.0.4 Short version: When I turn cookies off in my browser the authenticator no longer works. When cookies are on it works fine.
Long version: I've tried to make the subject as descriptive as possible, but the problem I'm having is that when I am using the form authenticator and I turn off cookies, it always goes to the page that I have set up to provide the username and password, and I see the jsessionid in the url which leads me to believe that it is trying to encode the url with the sessionid because it knows cookies aren't on. Then when I submit the page I get an "Invalid direct reference to form login page". I know this is not correct though. The problem is that when it gets into the authenticator and tries to retrieve the URL that the user entered the first time before the authenticator sends it to the login page IT CAN'T because the sessionid is different the 2nd time through when it tries to retrieve the old url from the session. Since the sessionid is different retrieving the url from that session is going to return null, and that's when I get the "Invalid direct reference to form login page". When I turn cookies back on in my browswer everything works fine. Anyone run into this bug or this problem? Any suggestions would be greatly appreciated -Mark __________________________________________________ Do you Yahoo!? Yahoo! Platinum - Watch CBS' NCAA March Madness, live on your desktop! http://platinum.yahoo.com --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
