Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security: redirect to "login" passes url hash & parameters to login #221

Open
eiswind opened this issue May 27, 2015 · 2 comments
Open

Security: redirect to "login" passes url hash & parameters to login #221

eiswind opened this issue May 27, 2015 · 2 comments
Assignees
@peholmst
Labels
enhancement security

Comments

@eiswind
Copy link

eiswind commented May 27, 2015

I build my app following your example with a separate UI for login. now if I'm logged out and open any (non-root) url from the main ui like http://localhost:8080/#!users I get redirected to http://localhost:8080/login#!users which of cours must fail. Any ideas how we can solve this?
@eiswind eiswind closed this as completed May 27, 2015
@eiswind eiswind reopened this May 27, 2015
@eiswind eiswind changed the title Redirect to Login passes url hash & parameters to login Security: redirect to "login" passes url hash & parameters to login May 27, 2015
@michahirsch
Copy link

I'm also interested in a fix/workaround because I'm having the same problem

@peholmst peholmst self-assigned this Jun 9, 2015
@eiswind
Copy link
Author

eiswind commented Jul 7, 2015

I could workaround this issue by setting
.authenticationEntryPoint(new LoginUrlAuthenticationEntryPoint("/login/#/"));

with this url everything works as expected

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@peholmst peholmst

Labels
enhancement security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@peholmst @eiswind @michahirsch