Details
-
Bug
-
Resolution: Fixed
-
Medium
-
None
-
None
-
None
Description
GET /user/forgotpassword HTTP/1.1
(...)
HTTP/1.1 302 Found
(...)
Set-Cookie: PHPSESSID=a2daa49e0b4507f2e0ec86a252aa0c89; path=/
Set-Cookie: LANG_REDIRECT=YES; expires=Tue, 01 Feb 2011 09:27:17 GMT;
(...)
GET /user/forgotpassword HTTP/1.1
(...)
LANG_REDIRECT=YES; fpc1000672744030= (...)
(...)
HTTP/1.1 302 Found
----------------------------------------------------------
https://auth.ez.no/user/forgotpassword?return=
GET /user/forgotpassword?return= HTTP/1.1
(...)
HTTP/1.1 302 Found
----------------------------------------------------------
http://ez.no/user/forgotpassword
etc...
Steps to reproduce
Go on http://ez.no
click on Customer Login
Be redirected to http://support.ez.no/
Click on Please log in to access the support resources available to you.
Be redirected to https://auth.ez.no/user/login
Click on "Click here to generate a new password"
Be redirected to https://auth.ez.no/user/forgotpassword
=> infinite redirection loop