Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-11507

Single-sign-on isn't working correctly in the Crowd 2 plugin

    XMLWordPrintable

Details

    Description

      You are logged in in Jenkins and another application, say, B, that authenticates against a remote Crowd server and uses single-sign-on.

      When you logout from B, your Jenkins session isn't invalidated, i.e. you remain logged in in Jenkins.

      Attachments

        Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-11505 Single-sign-on isn't working correctly in the Crowd 2 plugin

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. JENKINS-11506 Single-sign-on isn't working correctly in the Crowd 2 plugin

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved
          relates to

          Improvement - An improvement or enhancement to an existing feature or task. JENKINS-52306 Improve SSO logout

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • In Progress

          Activity

            Ascending order - Click to sort in descending order
            t_heit Thorsten Heit added a comment -

            The problem was that the security realm specified a session validation interval that was set to non-zero value. If you logout from another application, your Jenkins session still remained valid for a couple of minutes.

            Additionally some minor improvements were added to the servlet filter.

            t_heit Thorsten Heit added a comment - The problem was that the security realm specified a session validation interval that was set to non-zero value. If you logout from another application, your Jenkins session still remained valid for a couple of minutes. Additionally some minor improvements were added to the servlet filter.
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Thorsten Heit
            Path:
            src/main/java/de/theit/jenkins/crowd/CrowdSecurityRealm.java
            src/main/java/de/theit/jenkins/crowd/CrowdServletFilter.java
            http://jenkins-ci.org/commit/crowd2-plugin/23aa97ec0d9a9c9f8fc1dd00fc017207a9f732ff
            Log:
            Fix for bug JENKINS-11507 "Single-sign-on isn't working correctly in the
            Crowd 2 plugin"

            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Thorsten Heit Path: src/main/java/de/theit/jenkins/crowd/CrowdSecurityRealm.java src/main/java/de/theit/jenkins/crowd/CrowdServletFilter.java http://jenkins-ci.org/commit/crowd2-plugin/23aa97ec0d9a9c9f8fc1dd00fc017207a9f732ff Log: Fix for bug JENKINS-11507 "Single-sign-on isn't working correctly in the Crowd 2 plugin"

            People

              t_heit Thorsten Heit
              t_heit Thorsten Heit
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: