Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-11507

Single-sign-on isn't working correctly in the Crowd 2 plugin

    XMLWordPrintable

Details

    Description

      You are logged in in Jenkins and another application, say, B, that authenticates against a remote Crowd server and uses single-sign-on.

      When you logout from B, your Jenkins session isn't invalidated, i.e. you remain logged in in Jenkins.

      Attachments

        Issue Links

          Activity

            t_heit Thorsten Heit created issue -
            t_heit Thorsten Heit made changes -
            Field Original Value New Value
            Status Open [ 1 ] In Progress [ 3 ]
            t_heit Thorsten Heit added a comment -

            The problem was that the security realm specified a session validation interval that was set to non-zero value. If you logout from another application, your Jenkins session still remained valid for a couple of minutes.

            Additionally some minor improvements were added to the servlet filter.

            t_heit Thorsten Heit added a comment - The problem was that the security realm specified a session validation interval that was set to non-zero value. If you logout from another application, your Jenkins session still remained valid for a couple of minutes. Additionally some minor improvements were added to the servlet filter.
            t_heit Thorsten Heit made changes -
            Resolution Fixed [ 1 ]
            Status In Progress [ 3 ] Resolved [ 5 ]

            Code changed in jenkins
            User: Thorsten Heit
            Path:
            src/main/java/de/theit/jenkins/crowd/CrowdSecurityRealm.java
            src/main/java/de/theit/jenkins/crowd/CrowdServletFilter.java
            http://jenkins-ci.org/commit/crowd2-plugin/23aa97ec0d9a9c9f8fc1dd00fc017207a9f732ff
            Log:
            Fix for bug JENKINS-11507 "Single-sign-on isn't working correctly in the
            Crowd 2 plugin"

            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Thorsten Heit Path: src/main/java/de/theit/jenkins/crowd/CrowdSecurityRealm.java src/main/java/de/theit/jenkins/crowd/CrowdServletFilter.java http://jenkins-ci.org/commit/crowd2-plugin/23aa97ec0d9a9c9f8fc1dd00fc017207a9f732ff Log: Fix for bug JENKINS-11507 "Single-sign-on isn't working correctly in the Crowd 2 plugin"
            ohtake_tomohiro OHTAKE Tomohiro made changes -
            Link This issue is duplicated by JENKINS-11506 [ JENKINS-11506 ]
            ohtake_tomohiro OHTAKE Tomohiro made changes -
            Link This issue is duplicated by JENKINS-11505 [ JENKINS-11505 ]
            t_heit Thorsten Heit made changes -
            Status Resolved [ 5 ] Closed [ 6 ]
            rtyler R. Tyler Croy made changes -
            Workflow JNJira [ 141734 ] JNJira + In-Review [ 205425 ]
            gmshake Zhenlei Huang made changes -
            Link This issue relates to JENKINS-52306 [ JENKINS-52306 ]

            People

              t_heit Thorsten Heit
              t_heit Thorsten Heit
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: