When using cross-site cookies, the "Not You?" link keeps appending the URI to the link every time you click on it.

kamal's Avatar

kamal

27 Feb, 2009 05:32 PM

Scenario:

  1. Use a cross-site cookie to log into a tender instance.
  2. Click on the "Not You?" link on the top-right. Notice the link is like http://help.example.com/login?to=%2F
  3. Click the "Not You?" link again and again. After a while, the link looks like http://help.example.com/login?to=%2Flogin%3Fto%3D%252Flogin%253Fto%253D%25252F
  1. 1 Posted by rick on 18 Mar, 2009 09:39 PM

    rick's Avatar

    Doh, that's awesome. We have a fix for that coming tonight.

  2. rick closed this discussion on 18 Mar, 2009 09:39 PM.

Discussions are closed to public comments.
If you need help with Tender please start a new discussion.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac

Recent Discussions

14 Oct, 2019 04:05 AM
14 Oct, 2019 12:43 AM
21 Sep, 2019 02:33 PM
27 Aug, 2019 05:35 PM
15 Aug, 2019 01:56 AM