-
Type:
Bug
-
Status: Closed (View Workflow)
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: 1.1 Larks
-
Fix Version/s: 1.4 Larks
-
Labels:None
-
Sprint:Larks 1.1, Larks 1.2, 1.3 Larks, 1.4 Larks
We have the following error in production logs:
"SEVERE: Servlet.service() for servlet spring-dispatcher threw exception
org.springframework.security.web.authentication.rememberme.CookieTheftException: Invalid remember-me token (Series/token) mismatch. Implies previous cookie theft attack.
at org.springframework.security.web.authentication.rememberme.PersistentTokenBasedRememberMeServices.processAutoLoginCookie(PersistentTokenBasedRememberMeServices.java:90)
at org.springframework.security.web.authentication.rememberme.AbstractRememberMeServices.autoLogin(AbstractRememberMeServices.java:91)"
So we must find the reason of this problem and resolve it as soon as possible.
- relates to
-
JC-1147 Investigate PROD exceptions
-
- Closed
-
