9:36 a.m.
Portal CAS integration does not invalidate the CAS token
--------------------------------------------------------
Key: JBPORTAL-1848
URL: http://jira.jboss.com/jira/browse/JBPORTAL-1848
Project: JBoss Portal
Issue Type: Bug
Security Level: Public (Everyone can see)
Components: Portal Identity
Affects Versions: Identity-1.0, 2.6.2 Final
Reporter: Sohil Shah
Fix For: 2.6.4 Final, Identity-1.1
When a user logs out of Portal, the CAS token still stays alive and upon next Portal
request, performs automatic authentication.
End result is, user can never log out
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
9:39 a.m.
New subject: [JBoss JIRA] Updated: (JBPORTAL-1848) Portal CAS integration does not invalidate the CAS token
[ http://jira.jboss.com/jira/browse/JBPORTAL-1848?page=all ]
Sohil Shah updated JBPORTAL-1848:
---------------------------------
Affects Version/s: 2.6.3 Final
Portal CAS integration does not invalidate the CAS token
--------------------------------------------------------
Key: JBPORTAL-1848
URL: http://jira.jboss.com/jira/browse/JBPORTAL-1848
Project: JBoss Portal
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Portal Identity
Affects Versions: 2.6.2 Final, 2.6.3 Final, Identity-1.0
Reporter: Sohil Shah
Fix For: 2.6.4 Final, Identity-1.1
When a user logs out of Portal, the CAS token still stays alive and upon next Portal
request, performs automatic authentication.
End result is, user can never log out
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
9:39 a.m.
New subject: [JBoss JIRA] Assigned: (JBPORTAL-1848) Portal CAS integration does not invalidate the CAS token
[ http://jira.jboss.com/jira/browse/JBPORTAL-1848?page=all ]
Sohil Shah reassigned JBPORTAL-1848:
------------------------------------
Assignee: Sohil Shah
Portal CAS integration does not invalidate the CAS token
--------------------------------------------------------
Key: JBPORTAL-1848
URL: http://jira.jboss.com/jira/browse/JBPORTAL-1848
Project: JBoss Portal
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Portal Identity
Affects Versions: 2.6.2 Final, 2.6.3 Final, Identity-1.0
Reporter: Sohil Shah
Assigned To: Sohil Shah
Fix For: 2.6.4 Final, Identity-1.1
When a user logs out of Portal, the CAS token still stays alive and upon next Portal
request, performs automatic authentication.
End result is, user can never log out
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
12:27 a.m.
New subject: [JBoss JIRA] Resolved: (JBPORTAL-1848) Portal CAS integration does not invalidate the CAS token
[ http://jira.jboss.com/jira/browse/JBPORTAL-1848?page=all ]
Sohil Shah resolved JBPORTAL-1848.
----------------------------------
Resolution: Done
Portal CAS integration does not invalidate the CAS token
--------------------------------------------------------
Key: JBPORTAL-1848
URL: http://jira.jboss.com/jira/browse/JBPORTAL-1848
Project: JBoss Portal
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Portal Identity
Affects Versions: 2.6.2 Final, 2.6.3 Final, Identity-1.0
Reporter: Sohil Shah
Assigned To: Sohil Shah
Fix For: 2.6.4 Final, Identity-1.1
When a user logs out of Portal, the CAS token still stays alive and upon next Portal
request, performs automatic authentication.
End result is, user can never log out
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
12:27 a.m.
New subject: [JBoss JIRA] Commented: (JBPORTAL-1848) Portal CAS integration does not invalidate the CAS token
[ http://jira.jboss.com/jira/browse/JBPORTAL-1848?page=comments#action_1239... ]
Sohil Shah commented on JBPORTAL-1848:
--------------------------------------
The CAS Logout functionality is now added.
However, it must be noted that the CAS system recommends that you close your browser after
performing the Logout.
With my testing I noticed that if the browser is not closed and re-opened, when a new
authenticated portal session is created by CAS, the CAS ticket issued is invalid and you
cannot login to the portal even with a valid username and password.
This is a limitation of the CAS system
Portal CAS integration does not invalidate the CAS token
--------------------------------------------------------
Key: JBPORTAL-1848
URL: http://jira.jboss.com/jira/browse/JBPORTAL-1848
Project: JBoss Portal
Issue Type: Bug
Security Level: Public(Everyone can see)
Components: Portal Identity
Affects Versions: 2.6.2 Final, 2.6.3 Final, Identity-1.0
Reporter: Sohil Shah
Assigned To: Sohil Shah
Fix For: 2.6.4 Final, Identity-1.1
When a user logs out of Portal, the CAS token still stays alive and upon next Portal
request, performs automatic authentication.
End result is, user can never log out
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
6189
days inactive
6232
days old
4 comments
1 participants
participants (1)
-
Sohil Shah (JIRA)