Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Major
Fix Version/s: 13.4-rc-1
Affects Version/s: 3.2 M1
Component/s: REST
Labels:
None

Difficulty:
Unknown
Documentation:
N/A
Documentation in Release Notes:
https://www.xwiki.org/xwiki/bin/view/ReleaseNotes/Data/XWiki/13.4RC1/#HChangesinweb.xml
Similar issues:

Description

there is a first authentication done by org.xwiki.wysiwyg.filter.XWikiContextInitializationFilter
then org.xwiki.rest.internal.XWikiAuthentication reset the context user and redo the authentication
then if we are not authenticated org.xwiki.rest.internal.XWikiSecretVerifier

Among other things it means it's not great for performances but worst if you use the wrong credential you end up blocking yourself (3 bad credentials).

Attachments

Activity

People

Assignee:: Thomas Mortagne

Reporter:: Thomas Mortagne

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 02/Apr/21 16:27

Updated:: 17/May/21 16:24

Resolved:: 30/Apr/21 14:10

Date of First Response:: 04/Apr/21 8:10 PM