Defect #610
closed
IdM randomly log out users
Added by Marcel Poul over 7 years ago.
Updated over 7 years ago.
Category:
Authentication / Authorization
Description
When in GUI I am sometimes logged out. The behaviour seems to be pretty random. It should increase session intervals if the user is working in IdM.
- Related to Defect #521: Logout after role assignment added
- Status changed from New to Needs feedback
- Assignee changed from Jan Helbich to Radek Tomiška
I've found out that role (de)assignment processors did not check authority hierarchy. Example situation:
1. I'm APP_ADMIN
2. role with ROLE_AUTOCOMPLETE is added to me
3. my session is invalidated
I've fixed this case and added supportive test cases for both addition and role removal. Commit fe564b793983a1305ab285102c1d1ac4e5952d24.
Radek, can you do review, please?
- Status changed from Needs feedback to Closed
- Assignee changed from Radek Tomiška to Jan Helbich
- % Done changed from 0 to 100
It works and code looks nice, thx!
- Status changed from Closed to In Progress
- % Done changed from 100 to 70
I'm sorry, i tested it wrong - i tried to assign new roles to identity with some permission - it works. But if i change role's permission, then i'm still logged out -> admin with APP_ADMIN - add ROLE_READ permission to any assigned role.
Could you pls look at it?
Radek Tomiška wrote:
I'm sorry, i tested it wrong - i tried to assign new roles to identity with some permission - it works. But if i change role's permission, then i'm still logged out -> admin with APP_ADMIN - add ROLE_READ permission to any assigned role.
Could you pls look at it?
That was originally the desired behavior - checking all user's privileges would consume so much time so we settled with logging out all users in the updated role.
- Status changed from In Progress to Closed
- % Done changed from 70 to 100
I'm sorry, ok, i'm closing this ticket. We can improve this mechanism in future (but is different story:)).
- Related to Task #646: Random logout continues added
Also available in: Atom
PDF
