Announcement Announcement Module
Collapse
No announcement yet.
force login to not go to url maintained in session Page Title Module
Move Remove Collapse
This topic is closed
X
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • force login to not go to url maintained in session

    Is there a way to disable the feature that if the last url is known (i.e. you were logged into the app already) upon reauthentication you will redirected to that url. I would like to always go to the URL defined in the config. I couldn't find a way to turn it off though.

    Thanks

  • #2
    AFAIK, this is not part of the specification.

    I've searched for a while and couldn't find a defnitive solution to this problem. Search Google for 'post-authentication servlet' and you'll find some references and mails on the tomcat-user list I believe, maybe they'll be useful to you.

    At first I though it might be possible to do this by detecting if the session associated with the request is new (and if so, check if the appropriate page is going to be displayed), but there's not preventing the container from keeping track of the principal another way...

    Alef

    Comment


    • #3
      I've just committed an improvement to AbstractProcessingFilter which has a new property, alwaysUseDefaultTargetUrl. I think the property name gives it away.

      Comment


      • #4
        Awesome....that's exactly what I was looking for

        I was actually going to do that

        Thanks!

        Comment

        Working...
        X