Bug 1005749 - REST-API: Disallow endless authentication session
Summary: REST-API: Disallow endless authentication session
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat Enterprise Virtualization Manager
Classification: Red Hat
Component: ovirt-engine-restapi
Version: 3.3.0
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
: 3.3.0
Assignee: Juan Hernández
QA Contact: Ilia Meerovich
URL:
Whiteboard: infra
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-09-09 10:36 UTC by Michael Pasternak
Modified: 2016-02-10 19:10 UTC (History)
8 users (show)

Fixed In Version: is15
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2014-01-21 22:11:14 UTC
oVirt Team: Infra
Target Upstream Version:
Embargoed:

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
oVirt gerrit 19003 0 None None None Never
oVirt gerrit 19004 0 None None None Never

Description Michael Pasternak 2013-09-09 10:36:06 UTC 
Description of problem:

endless authentication session should be disallowed as it a subject for
potential security breaches and resources leak if client does not close
it at the end.
Comment 1 Ilia Meerovich 2013-10-31 07:51:01 UTC 
verified with IS16
Comment 4 Itamar Heim 2014-01-21 22:11:14 UTC 
Closing - RHEV 3.3 Released
Note You need to log in before you can comment on or make changes to this bug.