Bug 1010042

Summary: signo: logging out from foreman does not fully logout of UI, can login as previous user for katello UI
Product: Red Hat Satellite Reporter: Corey Welton <cwelton>
Component: InfrastructureAssignee: Marek Hulan <mhulan>
Status: CLOSED DUPLICATE QA Contact: Katello QA List <katello-qa-list>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: NightlyCC: bkearney
Target Milestone: UnspecifiedKeywords: Triaged
Target Release: Unused   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2013-10-09 14:26:35 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Corey Welton 2013-09-19 18:57:40 UTC 
Description of problem:
When signed in as user in katello, switching to foreman, logging out and logging in as new user, returning to katello will remain logged in as the first user.

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1. Login as admin user to /katello 
2. Create new user, "fibble"
3. Navigate to Provisioning
4. Logout admin user
5. Login as fibble
6. Navigate to Content; view name of logged in user

Actual results:
Logged in user is still admin

Expected results:
Logging out from UI should logout across all portions of unified UI
User should not be able to exist as previously logged-in user in other portions of UI.


Additional info:
I think this is a regression?  I'm fairly (though not 100%) sure this worked before.
Comment 1 Corey Welton 2013-09-19 18:59:38 UTC 
Similarly, logging out of katello ui and then clicking provisioning button will result in being logged in as previous user as well.
Comment 3 Marek Hulan 2013-09-26 07:00:02 UTC 
I think this is a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=969886

The question is, do we want some bigger changes to Katello and Signo to support this even when Signo won't be used in future? There's still a quick and dirty way to achieve logout - we could just delete user session cookies but since Katello uses cookie store session there may be data that we should not delete.

So can't we just say that this is a known "feature" of current version which will be changed later?
Comment 4 Corey Welton 2013-10-09 14:26:35 UTC 
QA Closing.

*** This bug has been marked as a duplicate of bug 969886 ***
Comment 5 Mike McCune 2014-01-16 21:16:47 UTC 
removing signo component and moving these bugs to 'Infrastructure'