Recently I test cdsso in openAM9.5.3_RC1, if the target url contains blank, it will be changed to "+", then get 404 error.
For example: if I want to access "/Reports list/report1.html", it will redirect to "/Reports+list/report1.html" after authentication success, this only happens in cdsso.
Then I look into the source code, see below codes in method redirectWithAuthNResponse:
gotoURL = URLEncDec.encodeUrlPath(gotoURL);
this encode will replace blank to "+", I just comment this, then it works. I can't understand why to encode here, and why not just use java.net.URLencoder.