Re: Wicket adds jsessionid to redirect onto external page

Wed, 04 Aug 2010 08:20:20 -0700

Hi Martin,

Yes, I've encountered this.  I think it's a bug in WebResponse.  The culprit is the line:

url = httpServletResponse.encodeRedirectURL(url);

The url should only be encoded when redirecting to the originating site, but the code doesn't check.

One workaround (short of fixing the bug) is to duplicate the functionality of WebResponse, commenting out the offending line.  Then use it as such:

     getRequestCycle().setResponse(new NonEncodingWebResponse((WebResponse) getRequestCycle().getResponse()));
            getRequestCycle().setRequestTarget(new RedirectRequestTarget(url));

The source code is attached.

Attachment: NonEncodingWebResponse.java
Description: Binary data


-Don

On Aug 4, 2010, at 2:22 AM, Martin Makundi wrote:

Hi!

I am doing something wrong? I am using:

       getResponse().redirect(getParameterFromRequest(RETURN_PAGE));

But the URL contains jsessionid. I think this is wrong because the
target server does not understand the jsessiond and it returns 404
page not found.

**
Martin

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@wicket.apache.org
For additional commands, e-mail: users-h...@wicket.apache.org


Reply via email to