Bug 777617 (SOA-126) - Standalone ESB server - need to add a logout to the single sign-on
Summary: Standalone ESB server - need to add a logout to the single sign-on
Keywords:
Status: CLOSED DEFERRED
Alias: SOA-126
Product: JBoss Enterprise SOA Platform 4
Classification: JBoss
Component: Tooling
Version: 4.2 IR5
Hardware: Unspecified
OS: Unspecified
high
high
Target Milestone: ---
: 4.2 IR6
Assignee: Mike Brock
QA Contact:
URL: http://jira.jboss.org/jira/browse/SOA...
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2007-11-09 21:37 UTC by Len DiMaggio
Modified: 2013-06-17 05:10 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
IR5 standalone ESB server
Last Closed: 2007-11-17 01:46:11 UTC
Type: Bug

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker SOA-126 0 None None None Never

Description Len DiMaggio 2007-11-09 21:37:30 UTC 
Date of First Response: 2007-11-16 20:45:59
project_key: SOA

Without a logout option - users will stay logged in - until browser is closed - probably a security hole
Comment 1 Mike Brock 2007-11-17 01:45:59 UTC 
The sessions expire after 10 minutes of activity, and the new method now opens the consoles into a separate browser window.  I'm going to close this for now, because closing the window is sufficient to terminate the session as session cookies are invalidated by the browser upon exit.
Note You need to log in before you can comment on or make changes to this bug.