WASReqURL cookie path is not set when the context root of an application is set to root. #7920
Labels
release bug
This bug is present in a released version of Open Liberty
release:19007
team:Core Security
When the context root of a web application is set to root "/", when a http request is redirected to the form login page, a setCookie of WASReqURL cookie does not have a cookie path value. As a result, a redirection to the original URL might fail since the WASReqURL cookie might not be sent from a client during authentication. Note that this issue only happens when includePathInWASReqURL is set as true.
The text was updated successfully, but these errors were encountered: