Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
VaadinSavedRequestAwareAuthenticationSuccessHandler redirects to the wrong URL if login is not in the application root
See original GitHub issueDescription of the bug
If you have a public view at /hello, a private view at /foo and a login view at /my/login where the public view has a link to the private view, then when you click the link you will end up on the login form and after login you will end up on /my/foo instead of /foo
The reason is that ViewAccessChecker stores the target view it gets from beforeEnterEvent.getLocation().getPathWithQueryParameters(). This is relative path so in this case foo.
The login POST goes to /my/login and the response to that is a redirect to “foo”, which the browser then interprets as /my/foo
If you instead open /foo directly, then it is not ViewAccessChecker that saves the target URL but instead VaadinDefaultRequestCache using HttpSessionRequestCache. This in turn stores the full request and provides the redirect URL as a full URL, e.g. http://localhost:8080/foo
Expected behavior
You should end up on the page you tried to navigate to.
Minimal reproducible example
As described above
Versions
- Vaadin / Flow version: 23.2.1
Issue Analytics
- State:
- Created a year ago
- Comments:5 (2 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
I move this to P1 as it needed to be fixed before #14253 (which is a BFP).
This ticket/PR has been released with Vaadin 23.1.11.