You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Currently, logging out from Kapua does not imply logging out from the OpenID provider.
This means that, if the OpenID session has not expired yet, the user will be able to login again using the "SSO Login" button without submitting again the credentials.
We would like that the user would not be able to login again without inserting his credential, by invalidating his session.
To Reproduce
Steps to reproduce the behavior:
Login in Kapua using SSO
Click on the logout menu item
Login again through SSO
See error (the user is logged in again)
Expected behavior
The user is logged out also from the OpenID session after performing the logout. This means that in order to login again, ha has to insert again his credentials on the OpenID provider.
Screenshots N/A
Version of Kapua
1.2.0-SNAPSHOT
Type of deployment
[ ] Local Vagrant deployment
[ ] Docker
[ ] Openshift (in its variants)
[x] Others
Main component affected
[x] Console (in case of console please report info on which browser you encountered the problem)
[ ] REST API
[ ] Message Broker
[ ] - Others
Additional context
This is related to PR #2754 "Refactoring of the SSO module".
Note that this issue has also been discussed previously in the discussion of issue #2566 , and supersedes #2773 .
The text was updated successfully, but these errors were encountered:
Describe the bug
Currently, logging out from Kapua does not imply logging out from the OpenID provider.
This means that, if the OpenID session has not expired yet, the user will be able to login again using the "SSO Login" button without submitting again the credentials.
We would like that the user would not be able to login again without inserting his credential, by invalidating his session.
To Reproduce
Steps to reproduce the behavior:
Expected behavior
The user is logged out also from the OpenID session after performing the logout. This means that in order to login again, ha has to insert again his credentials on the OpenID provider.
Screenshots
N/A
Version of Kapua
1.2.0-SNAPSHOT
Type of deployment
[ ] Local Vagrant deployment
[ ] Docker
[ ] Openshift (in its variants)
[x] Others
Main component affected
[x] Console (in case of console please report info on which browser you encountered the problem)
[ ] REST API
[ ] Message Broker
[ ] - Others
Additional context
This is related to PR #2754 "Refactoring of the SSO module".
Note that this issue has also been discussed previously in the discussion of issue #2566 , and supersedes #2773 .
The text was updated successfully, but these errors were encountered: