id summary reporter owner description type status priority milestone component version resolution keywords cc 2179 HTTP Status 400 - Bad request when logging in Nicklas Nordborg everyone "I got the following error message one day when trying to log in: {{{ HTTP Status 400 – Bad Request java.lang.IllegalArgumentException: Invalid character found in the request target. The valid characters are defined in RFC 7230 and RFC 3986 org.apache.coyote.http11.Http11InputBuffer.parseRequestLine(Http11InputBuffer.java:467) org.apache.coyote.http11.Http11Processor.service(Http11Processor.java:294) ... }}} Investigations showed that the user lacked permission to use the web client which caused BASE to generate an URL with an error message that contained the string `&error=Permission+denied:+Not+allowed+to+use+Client[externalId=net.sf.basedb.clients.web]` The problems seems to be that `[` and `]` must be encoded. I guess that the reason that we have not seen this before is that newer versions of Tomcat are more picky about this. " defect closed major BASE 3.15.1 web fixed