svn commit: r614279 - /ofbiz/trunk/applications/ecommerce/webapp/ecommerce/WEB-INF/actions/login.bsh

Tue, 22 Jan 2008 10:19:05 -0800 

Author: sichen
Date: Tue Jan 22 10:18:38 2008
New Revision: 614279

URL: http://svn.apache.org/viewvc?rev=614279&view=rev
Log:
Fix bug which occurs when login page loads again with PASSWORD already in the 
parameters.  The presence of two PASSWORDs will cause subsequent login attempts 
to fail.  Solution is to strip PASSWORD as done for USERNAME.

Modified:
    
ofbiz/trunk/applications/ecommerce/webapp/ecommerce/WEB-INF/actions/login.bsh

Modified: 
ofbiz/trunk/applications/ecommerce/webapp/ecommerce/WEB-INF/actions/login.bsh
URL: 
http://svn.apache.org/viewvc/ofbiz/trunk/applications/ecommerce/webapp/ecommerce/WEB-INF/actions/login.bsh?rev=614279&r1=614278&r2=614279&view=diff
==============================================================================
--- 
ofbiz/trunk/applications/ecommerce/webapp/ecommerce/WEB-INF/actions/login.bsh 
(original)
+++ 
ofbiz/trunk/applications/ecommerce/webapp/ecommerce/WEB-INF/actions/login.bsh 
Tue Jan 22 10:18:38 2008
@@ -26,7 +26,7 @@
 
 previousParams = session.getAttribute("_PREVIOUS_PARAMS_");
 if (previousParams != null && previousParams.length() > 0) {
-    previousParams = UtilHttp.stripNamedParamsFromQueryString(previousParams, 
UtilMisc.toList("USERNAME"));
+    previousParams = UtilHttp.stripNamedParamsFromQueryString(previousParams, 
UtilMisc.toList("USERNAME", "PASSWORD"));
     previousParams = "?" + previousParams;
 } else {
     previousParams = "";

Reply via email to