Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSO Session invalidation on Kapua logout #2774

Closed
gbarbon opened this issue Nov 15, 2019 · 0 comments · Fixed by #2783
Closed

SSO Session invalidation on Kapua logout #2774

gbarbon opened this issue Nov 15, 2019 · 0 comments · Fixed by #2783
Labels
Enhancement This PR/Issue improves an part of Kapua
Projects
1.3.0

Comments

@gbarbon
Copy link
Member

gbarbon commented Nov 15, 2019
edited

Describe the bug

Currently, logging out from Kapua does not imply logging out from the OpenID provider.
This means that, if the OpenID session has not expired yet, the user will be able to login again using the "SSO Login" button without submitting again the credentials.

We would like that the user would not be able to login again without inserting his credential, by invalidating his session.

To Reproduce
Steps to reproduce the behavior:

  1. Login in Kapua using SSO
  2. Click on the logout menu item
  3. Login again through SSO
  4. See error (the user is logged in again)

Expected behavior
The user is logged out also from the OpenID session after performing the logout. This means that in order to login again, ha has to insert again his credentials on the OpenID provider.

Screenshots
N/A

Version of Kapua
1.2.0-SNAPSHOT

Type of deployment
[ ] Local Vagrant deployment
[ ] Docker
[ ] Openshift (in its variants)
[x] Others

Main component affected
[x] Console (in case of console please report info on which browser you encountered the problem)
[ ] REST API
[ ] Message Broker
[ ] - Others

Additional context

This is related to PR #2754 "Refactoring of the SSO module".

Note that this issue has also been discussed previously in the discussion of issue #2566 , and supersedes #2773 .
@gbarbon gbarbon mentioned this issue Nov 15, 2019
Merged
@gbarbon gbarbon mentioned this issue Dec 4, 2019
Merged
@gbarbon gbarbon mentioned this issue Mar 24, 2020
Closed
@Coduz Coduz added this to To do in 1.4.0 via automation Nov 12, 2020
@Coduz Coduz added the Enhancement This PR/Issue improves an part of Kapua label Nov 12, 2020
@Coduz Coduz moved this from To do to Done in 1.4.0 Nov 12, 2020
@Coduz Coduz removed this from Done in 1.4.0 Nov 12, 2020
@Coduz Coduz added this to To Do in 1.3.0 via automation Nov 12, 2020
@Coduz Coduz moved this from To Do to Done in 1.3.0 Nov 12, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Enhancement This PR/Issue improves an part of Kapua
Projects
No open projects
1.3.0
  
Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Second step of SSO improvements gbarbon/kapua
2 participants
@Coduz @gbarbon