You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The solution differentiates resource URIs if they have a leading forward slash (/)
This behavior leads to token mismatch exceptions, because the same resource can have two different tokens assigned.
The resource URIs should be handled in a unified manner for HTTP requests, protected and unprotected page configuration properties by adding a leading forward slash (/) to each of them.
If the resource contains URL parameters, the JS logic is not able to associate the appropriate page token
The parameters should be stripped when looking up the page token value
In some cases an existing JS library has already extended the XHR functionalities and when doing a request and when opening an AJAX connection it only provides the name of the resource/endpoint without the full path.
e.g. endpoint instead of service/endpoint
The JS logic could be enhanced to try to cater for these situations by computing the full path of the resource and looking up page tokens for it if the previous attempt fails
The text was updated successfully, but these errors were encountered:
forgedhallpass
changed the title
The solution differentiates resource URIs if they have a leading forward slash (/)
Provide a better solution for looking up page tokens in the JS logic
Sep 10, 2020
The solution differentiates resource URIs if they have a leading forward slash (/)
This behavior leads to token mismatch exceptions, because the same resource can have two different tokens assigned.
The resource URIs should be handled in a unified manner for HTTP requests, protected and unprotected page configuration properties by adding a leading forward slash (/) to each of them.
If the resource contains URL parameters, the JS logic is not able to associate the appropriate page token
The parameters should be stripped when looking up the page token value
In some cases an existing JS library has already extended the XHR functionalities and when doing a request and when opening an AJAX connection it only provides the name of the resource/endpoint without the full path.
e.g. endpoint instead of service/endpoint
The JS logic could be enhanced to try to cater for these situations by computing the full path of the resource and looking up page tokens for it if the previous attempt fails
The text was updated successfully, but these errors were encountered: