When using cross-site cookies, the "Not You?" link keeps appending the URI to the link every time you click on it.

kamal's Avatar

kamal

27 Feb, 2009 05:32 PM

Scenario:

  1. Use a cross-site cookie to log into a tender instance.
  2. Click on the "Not You?" link on the top-right. Notice the link is like http://help.example.com/login?to=%2F
  3. Click the "Not You?" link again and again. After a while, the link looks like http://help.example.com/login?to=%2Flogin%3Fto%3D%252Flogin%253Fto%253D%25252F
  1. 1 Posted by rick on 18 Mar, 2009 09:39 PM

    rick's Avatar

    Doh, that's awesome. We have a fix for that coming tonight.

  2. rick closed this discussion on 18 Mar, 2009 09:39 PM.

Discussions are closed to public comments.
If you need help with Tender please start a new discussion.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac

Recent Discussions

24 Feb, 2020 10:11 PM
17 Feb, 2020 08:59 PM
07 Jan, 2020 06:17 AM
30 Dec, 2019 11:51 PM
05 Dec, 2019 01:11 AM