I am testing my application in Liberty Profile v8.5. I have configured "basicregistry", application binding for security role in server.xml, also added security role & constraints in web.xml. But when I am testing the page I am getting an exception with message "A user authenticated as anonymous has attempted to access a session owned by user:BasicRegistry/xxxxx" (xxxxx is a user id added in the basic registry).
Please let me know how to resolve this issue?
This topic has been locked.
Pinned topic Liberty Profile v8.5 - A user authenticated as anonymous has attempted ...
Answered question This question has been answered.
Unanswered question This question has not been answered yet.
kark 110000716N26 Posts
Re: Liberty Profile v8.5 - A user authenticated as anonymous has attempted ...2012-11-21T14:36:28ZThis is the accepted answer. This is the accepted answer.The Troubleshooting tips link in the infocenter has information about this error. If you are using form-login you might be hitting the login.jsp issue (set the page session to false and see).
Session security is enabled by default so if a session was created by a user and is being accessed by another user or an unauthenticated/anonymous user this exception is thrown. The securityIntegrationEnabled element under httpSession controls the session security.