1 Reply Latest reply on Oct 25, 2012 5:49 PM by peter.clarke

    Cookie mismatch



           We have upgraded the server from jboss 4.2.2 to jboss 7.1.1. The application was deployed under

      jboss\standalone\deployments folder successfully. This application is integrate with SSO (Active Directory authentication)

      after this which was observerd the login is happening only for some users and not all. There seems to be a problem in allowing

      '=' value in cookie with jboss 7.1.1 server


      Can anyone help us on this???





        • 1. Re: Cookie mismatch

          Hopefully you have a solution by now, if not see https://community.jboss.org/message/761570#761570

          I had a similar problem with encrypted credentials passed in a cookie, adding the following system properties to standalone.xml resolved it:

          <property name="org.apache.catalina.STRICT_SERVLET_COMPLIANCE" value="false"/>
          <property name="org.apache.tomcat.util.http.ServerCookie.ALLOW_EQUALS_IN_VALUE" value="true"/>
          <property name="org.apache.tomcat.util.http.ServerCookie.ALLOW_HTTP_SEPARATORS_IN_V0" value="true"/>
          <property name="org.apache.tomcat.util.http.ServerCookie.ALWAYS_ADD_EXPIRES" value="false"/>
          <property name="org.apache.tomcat.util.http.ServerCookie.FWD_SLASH_IS_SEPARATOR" value="false"/>