Bug #31905

getInterceptedRequest is NULL but ACL matches correctly DENY

Added by Carsten Bleicker about 10 years ago. Updated over 9 years ago.

Status:
Resolved
Priority:
Should have
Assignee:
-
Category:
Security
Start date:
2011-11-18
Due date:
% Done:

100%

Estimated time:
PHP Version:
5.3
Has patch:
No
Complexity:

Description

hi folks,
i had defined an policy for one method wich allows only access if a role exists.
if i call this method without any matching token i will be redirected to the defined WebRedirect.
so anything works fine. but the getInterceptedRequest() of the security contenxt is NULL. it only holds
an interceptRequest if the security matches a second time again. I think there is something wrong with the session?

f.e:
getInterceptedRequest() is NULL if:
  1. init very first visit of my site provides a form wich sends to the controller with policy.
  2. submitting this form
  3. i will get redirected to login
  4. getInterceptedRequest() is NULL
getInterceptedRequest() is filled correctly if:
  1. init very first visit of my site provides a form wich sends to the controller with policy.
  2. submitting this form
  3. i will get redirected to login
  4. getInterceptedRequest() is NULL
  5. going back
  6. submitting again
  7. getInterceptedRequest() is filled correctly

any ideas?


Related issues

Related to TYPO3.Flow - Bug #31931: AuthenticationController is not working anymoreResolvedChristian Müller2011-11-18

Actions
Has duplicate TYPO3.Flow - Bug #33311: AuthenticationProviderManager::isAuthenticated does not work in authentication requestResolvedChristian Müller2012-01-19

Actions

Also available in: Atom PDF