1 Reply Latest reply: Oct 25, 2012 5:49 PM by Peter Clarke RSS

Cookie mismatch

jbossaspirant Newbie


     We have upgraded the server from jboss 4.2.2 to jboss 7.1.1. The application was deployed under

jboss\standalone\deployments folder successfully. This application is integrate with SSO (Active Directory authentication)

after this which was observerd the login is happening only for some users and not all. There seems to be a problem in allowing

'=' value in cookie with jboss 7.1.1 server


Can anyone help us on this???





  • 1. Re: Cookie mismatch
    Peter Clarke Newbie

    Hopefully you have a solution by now, if not see https://community.jboss.org/message/761570#761570

    I had a similar problem with encrypted credentials passed in a cookie, adding the following system properties to standalone.xml resolved it:

    <property name="org.apache.catalina.STRICT_SERVLET_COMPLIANCE" value="false"/>
    <property name="org.apache.tomcat.util.http.ServerCookie.ALLOW_EQUALS_IN_VALUE" value="true"/>
    <property name="org.apache.tomcat.util.http.ServerCookie.ALLOW_HTTP_SEPARATORS_IN_V0" value="true"/>
    <property name="org.apache.tomcat.util.http.ServerCookie.ALWAYS_ADD_EXPIRES" value="false"/>
    <property name="org.apache.tomcat.util.http.ServerCookie.FWD_SLASH_IS_SEPARATOR" value="false"/>