Red Hat Bugzilla – Bug 1010042
signo: logging out from foreman does not fully logout of UI, can login as previous user for katello UI
Last modified: 2014-01-16 16:16:47 EST
Description of problem:
When signed in as user in katello, switching to foreman, logging out and logging in as new user, returning to katello will remain logged in as the first user.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Login as admin user to /katello
2. Create new user, "fibble"
3. Navigate to Provisioning
4. Logout admin user
5. Login as fibble
6. Navigate to Content; view name of logged in user
Logged in user is still admin
Logging out from UI should logout across all portions of unified UI
User should not be able to exist as previously logged-in user in other portions of UI.
I think this is a regression? I'm fairly (though not 100%) sure this worked before.
Similarly, logging out of katello ui and then clicking provisioning button will result in being logged in as previous user as well.
I think this is a duplicate of https://bugzilla.redhat.com/show_bug.cgi?id=969886
The question is, do we want some bigger changes to Katello and Signo to support this even when Signo won't be used in future? There's still a quick and dirty way to achieve logout - we could just delete user session cookies but since Katello uses cookie store session there may be data that we should not delete.
So can't we just say that this is a known "feature" of current version which will be changed later?
*** This bug has been marked as a duplicate of bug 969886 ***
removing signo component and moving these bugs to 'Infrastructure'