I have an error after resetting my password, and is as follows:
1. In the login page, I ask to reset my password, fill in the information and I receive the email.
2. In the email, I click the URL and the browser opens in the correct page.
3. I submit the new password, I get the message that it updated successfully and I click on the link to go to the login page.
4. In the login page, I insert my login and the new password, submit the information, and I get the following error:
So, why do I get the error? Is it some misspelled URL redirection after processing jforum.page?
I'm running JForum 2.1.8 in the following environment:
"Using CATALINA_BASE: /root/tomcat
Using CATALINA_HOME: /root/tomcat
Using CATALINA_TMPDIR: /root/tomcat/temp
Using JRE_HOME: /etc/java6
Server version: Apache Tomcat/6.0.16
Server built: Jan 28 2008 11:35:29
Server number: 188.8.131.52
OS Name: Linux
OS Version: 2.6.9-42.ELsmp
JVM Version: 1.6.0_05-b13
JVM Vendor: Sun Microsystems Inc."
Thank you for support,
Alexandre Ramos [originally posted on jforum.net by aramos]
Migrated From Jforum.net
posted 9 years ago
As you found out, it looks like the returnPath on the login screen is not correct. You are getting logged on, but then being transferred to a non-existent page. This causes the 404 error.
I'm not sure how this is getting set up wrong. The recoverPasswordValidate method doesn't set a returnPath parameter. The only other option I see is that the referrer header is being passed with the strange URL for some reason.
Try setting the login.ignore.referrer to true in your jforum-custom.conf file. This will force the login page to only use returnPath parameters and ignore the referrer.
If this causes issues with people requesting pages, being directed to the login page, and then not getting back to the page they where trying to see... You might try adding a "hack" into the forum_login.htm Freemarker code that checks for that URL and corrects it.
Finally, you might look at creating a custom 404 page with a link back to the main site. Just to make it easier for users who find a bad link. [originally posted on jforum.net by monroe]
Squanch that. And squanch this tiny ad:
RavenDB is an Open Source NoSQL Database that’s fully transactional (ACID) across your database