[MID-6090] Authentication Channel inaccessible due to 403 error - Evolveum Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 4.1
Fix Version/s: 4.1
Component/s: None
Labels:
- #rus
Environment:
Flexible Authentication

2 Channels:
- SAML
- Emergency (Basic)

Subscription:
Active subscription

Description

Scenario:

Login via regular SAML channel (SSO)
User decides he wants to change to another account without SSO.
calling: https://curms-e.rsint.net/midpoint/auth/emergency
getting: 403 Forbidden
hitting "Logout" button on the Forbidden page
still getting: 403 Forbidden
hitting "Home" button
back to Dashboard still logged in.
click on Username in the top-right corner,
hitting Logout
finally getting the login-page for the secondary channel.

Proposal:

a) Automatically logout the user when /auth is called in logged-in context

or

b) still show 403 but make the Logout button on that page work..

Attachments

Activity

People

Assignee:: Martin Hoffmann

Reporter:: Martin Hoffmann

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 28/Feb/20 10:52 AM

Updated:: 25/Jun/20 4:29 PM

Resolved:: 11/Mar/20 2:14 PM