Red Hat Bugzilla – Bug 961957
when foreman session expires, user loses acess to views for admin user in katello.
Last modified: 2014-03-12 18:58:07 EDT
Description of problem:
Not sure if this is webui issue or foreman. It is bizarre...
If a user is logged into both katello and foreman UIs (in separate tabs for example) and is logged out due to inactivity in foreman, user loses all rights to access stuff in katello. This includes admin accounts. No amount of logging in/out of katello, clearing cookies, etc., seems to grant this access back!
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. Login to /katello
2. Login to /foreman in a separate browser tab (will need to manually login until SSO is fixed)
3. Wait for $time until user is logged out of foreman due to inactivity.
4. Return to /katello and try to browse around.
5. Try logging out and back in, clearing cookies, etc. and repeat step 4
User loses most of dashboard and can't access anything.
User doesn't lose access to stuff.
This /may/ actually have something to do with losing track of which org the user is in. I think I figured out a workaround/way to get access to stuff again but I'll have to test it.
So, yeah, what happens is when user is timed out due to inactivity in /foreman, user's selected org is lost in /katello. Selecting an org from the dropdown in the lefthand side seems to resolve/be a workaround.
Not as bizarre I guess, but still ugly.
I was unable to reproduce this. Setting foreman session to expire after 1 minute did not exhibit such behavior. Even when Signo session was expired. However I've got a suspicion that it was Katello's session that got expired. I did not test it yet but this is how Katello treats sessions because they are stored in cookies. Unless user has starred (default) organization his selection may disappear with expiring cookie.
FWIW, this happened for me in Katello and I do not have foreman open.
Yes, verified that it's caused by Katello session expiration.
Still in discussion, moving this to 6.0.2.
Closing old bugs which are not relevant based on new UI and CLI