mirror of https://github.com/apache/cloudstack.git
70122007bb
This change will set the sessionkey under the /client/api path. This commit should prevent duplicate sessionkey cookies from being set on both /client (incorrect) and /client/api (correct). Prior to this commit, the /client version was being set while the /client/api version remained unchanged with an invalid sessionkey. As a result, subsequent requests after the SAML2 authentication would immediately fail with an invalid session and results in the user being logged out. The sessionkey is now set explicitly for the /client/api path which should fix this issue, regardless of the SSO URL and path that's being used. |
||
|---|---|---|
| .. | ||
| ldap | ||
| md5 | ||
| pbkdf2 | ||
| plain-text | ||
| saml2 | ||
| sha256salted | ||