Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 1340446

Summary: 'Terminate Session' does not work
Product: [oVirt] ovirt-engine Reporter: Jiri Belka <jbelka>
Component: AAAAssignee: Ravi Nori <rnori>
Status: CLOSED DUPLICATE QA Contact: Petr Matyáš <pmatyas>
Severity: high Docs Contact:
Priority: unspecified    
Version: 4.0.0CC: bugs, mperina, oourfali, pnovotny
Target Milestone: ovirt-4.0.0-rcKeywords: Regression
Target Release: ---Flags: oourfali: ovirt-4.0.0?
rule-engine: blocker?
rule-engine: planning_ack?
rule-engine: devel_ack?
pnovotny: testing_ack+
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2016-05-31 18:28:47 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: Infra RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Jiri Belka 2016-05-27 12:21:52 UTC 
Description of problem:

While having another user except of admin@internal logged-in into engine (admin@internal into Webadmin, a domain user into User Portal), 'Terminate Session' action of the domain user does not causes the user to be logged-off. The domain user's session reappears in the session list in a while as well.

Version-Release number of selected component (if applicable):
ovirt-engine-backend-4.0.0-0.7.master.el7ev.noarch

How reproducible:
100%

Steps to Reproduce:
1. login into Webadmin as admin@internal
2. login to User Portal as a domain user of a "registered" domain (another browser)
3. check 'Active User Sessions' in Webadmin
4. 'Terminate Session' of the domain user (confirm)
5. observe what happens

Actual results:
the domain user is not logged-off from his own browser session
the domain user's session reappears again in the sessions list

Expected results:
the domain user should be forcibly logged-off
the domain user's session should not be present in the sessions list after the action

Additional info:
pnovotny@ said it works ok in 3.6.x
Comment 2 Jiri Belka 2016-05-27 12:25:34 UTC 
Not sure if really relevant:

~~~
2016-05-27 12:16:29,490 INFO  [org.ovirt.engine.core.bll.aaa.CreateUserSessionCommand] (default task-3) [63187b2b] Running command: CreateUserSessionCommand(Email = null, GroupIds = [], PrincipalName = ad-w2k8r2.com, AdminRequired = false, ProfileName = ad-w2k8r2.example.com, PrincipalId = KqAXTzGX9UaxSaIuawL4ug==, SsoToken = kaID0aHwCx1JlwIbPjCNtHvdpnf9hrSiJ3TTz_nYIcGm6tAbqaGQxAs0VEx7zoROAzQoevTKag2nIJfMfiDr4Q, SourceIp = 10.34.130.216) internal: false.

# grep 'TerminateSessionForTokenCommand' /var/log/ovirt-engine/engine.log | tail -n1
#
~~~
Comment 3 Red Hat Bugzilla Rules Engine 2016-05-30 13:21:53 UTC 
This bug report has Keywords: Regression or TestBlocker.
Since no regressions or test blockers are allowed between releases, it is also being identified as a blocker for this release. Please resolve ASAP.
Comment 4 Ravi Nori 2016-05-31 18:28:47 UTC 

*** This bug has been marked as a duplicate of bug 1340471 ***