Redirect on Successful login not working for URLs with anchors/fragments

**NataliaZ** · Dec 29th, 2008, 12:30 AM

Hi

I'm relatively new to spring security so bare with me...

We have a gwt application, this means that all the urls in the application look like this:
localhost:8080/GwtApp/gwtapp.html#whatever

Our applicationContext includes:

Code:

	
<security:http auto-config="true">
	<security:intercept-url pattern="/login.jsp*" filters="none" />
    	<security:intercept-url pattern="/**" access="ROLE_USER" />
	<security:form-login login-page="/login.jsp" always-use-default-target="false" />
	<security:remember-me />
	<security:logout invalidate-session="true" logout-success-url="/login.jsp"/>
</security:http>

Re-producing our problem:
1. user tries to go to a secured resource, e.g.
localhost:8080/GwtApp/gwtapp.html#whatever
2. user is re-directed to login.jsp
3. user logs in
4. user is redirected to localhost:8080/GwtApp/gwtapp.html

The problem is that the url anchor/fragment (i.e. the #whatever) is dropped.

Can anyone shed any light on this?

Many Thanks
Nat

**Luke Taylor** · Dec 29th, 2008, 12:20 PM

Sounds fishy. Can you open a Jira issue please, preferably with a test case and I'll take a look at some point.

**NataliaZ** · Dec 29th, 2008, 09:45 PM

I've created the jira issue:
http://jira.springframework.org/browse/SEC-1067

Thread: Redirect on Successful login not working for URLs with anchors/fragments

Thread Tools

Display

Hybrid View

Redirect on Successful login not working for URLs with anchors/fragments

Tags for this Thread

Posting Permissions