Switch the authToken processing to look at the cookie, and not the
request parameters. Refs: #8700
Showing
1 changed file
with
10 additions
and
1 deletions
... | @@ -410,7 +410,16 @@ public class DirectControlServlet extends HttpServlet { | ... | @@ -410,7 +410,16 @@ public class DirectControlServlet extends HttpServlet { |
410 | 410 | ||
411 | // If the sessionId parameter is set, attempt to look up the corresponding | 411 | // If the sessionId parameter is set, attempt to look up the corresponding |
412 | // UserLogin and apply it to the service context | 412 | // UserLogin and apply it to the service context |
413 | String authToken = request.getParameter("sessionId"); | 413 | Cookie[] requestCookies = request.getCookies(); |
414 | String authToken = null; | ||
415 | if (requestCookies != null) { | ||
416 | for (Cookie requestCookie: requestCookies) { | ||
417 | if (requestCookie.getName().equals(sessionTokenName)) { | ||
418 | authToken = requestCookie.getValue(); | ||
419 | } | ||
420 | } | ||
421 | } | ||
422 | //String authToken = request.getParameter("sessionId"); | ||
414 | if (authToken != null) { | 423 | if (authToken != null) { |
415 | GenericValue authTokenEntity = EntityUtil.getFirst( | 424 | GenericValue authTokenEntity = EntityUtil.getFirst( |
416 | EntityUtil.filterByDate( | 425 | EntityUtil.filterByDate( | ... | ... |
-
Please register or sign in to post a comment