Description of problem: On pages that use Backbone.js, they will re-query every 30 seconds (or whatever), keeping the sessions alive indefinitely. This renders the 15-minute inactivity timeout ineffective if you happen to leave a tab with auto-refreshes open. Steps to Reproduce: 1. Log in, navigate to a page with Backbone (like the default pool list page) 2. Leave the page unattended for >15 minutes 3. Click some link Actual results: Page loads because your session times out. Expected results: Page redirects you to login page because your session has timed out.
This is caused by https://bugzilla.redhat.com/show_bug.cgi?id=794536 -- which seems to be gaining support for being reverted. I suggest holding off on addressing this bug until the outcome of that one is clear.
This is fixed by reverting the patch for 794536, as above.
assigning to rehana
Observed that the browser session didn't get timed out after 15min. hence moving the status to verified; verified on ; rpm -qa | grep aeolus rubygem-aeolus-image-0.3.0-12.el6.noarch aeolus-conductor-0.8.7-1.el6.noarch aeolus-conductor-doc-0.8.7-1.el6.noarch aeolus-conductor-daemons-0.8.7-1.el6.noarch aeolus-configure-2.5.2-1.el6.noarch aeolus-all-0.8.7-1.el6.noarch rubygem-aeolus-cli-0.3.1-1.el6.noarch