Win a copy of Java Concurrency Live Lessons this week in the Threads forum!
  • Post Reply Bookmark Topic Watch Topic
  • New Topic

Why IE can not open a page, but Firefox can?  RSS feed

 
Light Wan
Ranch Hand
Posts: 31
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hi all,

We have an authentication applicaiton and the application is based on Weblogic Server 8.1. There are three pages/servlets involved in the login process: login.jsp, LoginServlet, and menu.jsp. If user inputs correct username/password and clicks the login button, the LoginServlet will verify user's profile and set some cookie into HTTP Response. Fianlly, the servlet will redirect the user to menu.jsp.

Right now we are facing a weird phenomenon: based on one specific user, we can not login using IE, but can login using Firefox or Opera.

In IE, after inputed username/password and clicked the logon button, "The page cannot be displayed" is presented on screen. And, the URL in the address bar is the URL of LoginServlet. The log information indicates the user has been redirected to menu.jsp and no log info outputted by menu.jsp. At that time, if we directly access the menu.jsp in the same IE window, below messages is presented on the top of the page. These messages should be in HTTP Header part. Why they aree outputted by WebServer on page? And the menu page is just presented partially.

Cache-Control: no-cache Set-Cookie: ABC_TOKEN=%00%22%3F69%3C5%04%29+5m%03%03%00%1F%13.%13%3C95%3E%24%19%14mcegie%60e.%05%235%22%19%14m%06%11%1E%14%15%02%0A%09%00%15%1E.%061%3C94%005%229%3F4mad.%15%28+9%22%29%049%3D5mbf%7F%60a%7Fb%60%60gp%60hjbdjce; domain=.companyname.com; path=/ Connection: Keep-Alive

The partialsource codes of the menu page is:

Cache-Control: no-cache
Set-Cookie: ABC_TOKEN=%00%22%3F69%3C5%04%29+5m%03%03%00%1F%13.%13%3C95%3E%24%19%14mcegie%60e.%05%235%22%19%14m%06%11%1E%14%15%02%0A%09%00%15%1E.%061%3C94%005%229%3F4mad.%15%28+9%22%29%049%3D5mbf%7F%60a%7Fb%60%60gp%60hjbdjce; domain=.companyname.com; path=/
Connection: Keep-Alive
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<HTML>
<HEAD>
......
.... The last table does not be presented completely.


Do you have any idea about this issue?


Thanks,
Light Wan
 
William Janssen
Ranch Hand
Posts: 39
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Can it be that you put a enter/ newline feed within the value of one of your cookies?
 
Light Wan
Ranch Hand
Posts: 31
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
No enter\ or new line character in cookie value.
 
Rahul Bhattacharjee
Ranch Hand
Posts: 2308
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
html is not a strongly typed markup language and implementations may varry from vendor to vendor.
[ January 27, 2007: Message edited by: Rahul Bhattacharjee ]
 
William Brogden
Author and all-around good cowpoke
Rancher
Posts: 13078
6
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The page cannot be displayed

That looks like one of those "user friendly" MSIE messages - I think there is a setting you can change to give more information.

If this was my problem I would use TCPMON or similar program to intercept the actual text transmitted so I could carefully examine the headers for possible anomalies such as the extra newline mentioned by William Janssen.
Bill
 
Light Wan
Ranch Hand
Posts: 31
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Thanks all of you.

I checked the value inputted in cookie and http header part at the server side. One value, which has new line charachers, was inputted into http header. And I tried to repeat the issue using such a value with new line characters, but I failed. The problem was not reproduced. Does HTTP potocol allow to set value which has new line characters into HTTP Header Part?

BTW, to William Brogden, could you share with me how to set the local port for TCPMON? TCPMON is running on my machine.
 
Light Wan
Ranch Hand
Posts: 31
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I used IE HTTP Analyzer to track the https stream sent from WebServer side. IE has received the http header part from server side, but the stream has not been finised. Below is the whole stream content:

HTTP/1.1 302 Moved Temporarily
Date: Mon, 29 Jan 2007 10:11:20 GMT
Location: https://www.copanyname.com/login_path/menu
Content-Type: text/html
Transfer-Encoding: chunked
LOGIN_TOKEN:

Set-Cookie: LOGIN_TOKEN=%00%22%3F69%3C5%04%29+5m%03%03%00%1F%13.%13%3C95%3E%24%19%14mcegie%60e.%05%235%22%19%14m%06%11%1E%14%15%02%0A%09%00%15%1E.%061%3C94%005%229%3F4mad.%15%28+9%22%29%049%3D5mbi%7F%60a%7Fb%60%60gpaajbejb%60; domain=.copanyname.com; path=/
Set-Cookie: CorporateLanguage=nl; domain=.copanyname.com; expires=Monday, 05-Feb-2007 10:11:20 GMT; path=/
Set-Cookie: clientid=233242323423; domain=.copanyname.com; expires=Monday, 05-Feb-2007 10:11:20 GMT; path=/
Connection: Close

012b
<html><head><title>302 Moved Temporarily</title></head>
<body bgcolor="#FFFFFF">
<p>This document you requested has moved temporarily.</p>
<p>It's now at <a href="https://www.copanyname.com/login_path/menu">https://www.copany



There is "012b" in the above content. What's that? Can it cause the problem?

And, with the response, the result code is "ERROR_INTERNET_INTERNAL_ERROR".
[ January 29, 2007: Message edited by: Light Wan ]
 
Light Wan
Ranch Hand
Posts: 31
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The correct response from server side should be like below. Even, there is a new line character in the value of LOGIN_TOKEN, there is no problem for another account.

HTTP/1.1 302 Moved Temporarily
Date: Mon, 29 Jan 2007 11:07:28 GMT
Location: https://www.companyname.com/login_path/menu
Content-Type: text/html
Transfer-Encoding: chunked
LOGIN_TOKEN:

Set-Cookie: LOGIN_TOKEN=%00%22%3F69%3C5%04%29+5m%03%03%00%1F%13.%13%3C95%3E%24%19%14mbbbbbbbb.%05%235%22%19%14m5%3E7%3C9%238.%061%3C94%005%229%3F4mad.%15%28+9%22%29%049%3D5mbi%7F%60a%7Fb%60%60gpabjbajbh; domain=.companyname.com; path=/
Set-Cookie: CorporateLanguage=en; domain=.companyname.com; expires=Monday, 05-Feb-2007 11:07:28 GMT; path=/
Set-Cookie: lfcclientid=134123413241; domain=.companyname.com; expires=Monday, 05-Feb-2007 11:07:28 GMT; path=/
Connection: Close

012b
<html><head><title>302 Moved Temporarily</title></head>
<body bgcolor="#FFFFFF">
<p>This document you requested has moved temporarily.</p>
<p>It's now at <a href="https://www.companyname.com/login_path/menu">https://www.companyname.com/login_path/menu</a>.</p>
</body></html>

0000

[ January 29, 2007: Message edited by: Light Wan ]
 
William Brogden
Author and all-around good cowpoke
Rancher
Posts: 13078
6
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Does HTTP potocol allow to set value which has new line characters into HTTP Header Part?


As I understand it, no - because if it is immediately followed by another new line this creates a blank line, signifying the end of headers and the start of the body.

Bill
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!