Hi Groza Dănuț, Please set auth="false" for all views that should be accessible anonymously. Additionally, the default values for the https and auth attributes in the security element have been changed from false to true. This means that if the security element is not defined or if auth/https are not explicitly set to false, those requests will now be treated as https=trueand auth=true.
Please refer to the relevant *ofbiz-plugins* commit [1] to set auth="false" for views that should be accessible anonymously. If you have custom request/view mappings, please apply this fix to those as well. [1] https://github.com/apache/ofbiz-plugins/commit/8b95fe6faf7437dca11bf27f886de9a049db9207 Thanks & Regards -- Deepak Dixit ofbiz.apache.org On Fri, Aug 30, 2024 at 3:39 PM Groza Danut <grozadanu...@gmail.com> wrote: > Hi all, > > The ecommerce site at /ecommerce/control/main or /ecomseo/control/main is > not working anymore, throwing 500 Internal error: > > org.apache.ofbiz.webapp.control.RequestHandlerException: An active login is > required for view with name [main] > > Stacktrace is: > > org.apache.ofbiz.webapp.control.RequestHandlerException: An active login is > required for view with name [main] > > at org.apache.ofbiz.webapp.control.RequestHandler.renderView( > RequestHandler.java:1210) ~[main/:?] > > at org.apache.ofbiz.webapp.control.RequestHandler.doRequest( > RequestHandler.java:935) ~[main/:?] > > at org.apache.ofbiz.webapp.control.ControlServlet.handle( > ControlServlet.java:231) [main/:?] > > at org.apache.ofbiz.webapp.control.ControlServlet.doGet( > ControlServlet.java:96) [main/:?] > > As far as I can see this is connected with the recent block of code added > with Improved: Add permission check for view-maps and change defaults for > request-maps (OFBIZ-13130) (#831) > in org.apache.ofbiz.webapp.control.RequestHandler > > -- > Groza Dănuț >
