cloudstack

History

Leo 70122007bb Updated SAML2 auth sessionkey cookie path (#6149 ) This change will set the sessionkey under the /client/api path. This commit should prevent duplicate sessionkey cookies from being set on both /client (incorrect) and /client/api (correct). Prior to this commit, the /client version was being set while the /client/api version remained unchanged with an invalid sessionkey. As a result, subsequent requests after the SAML2 authentication would immediately fail with an invalid session and results in the user being logged out. The sessionkey is now set explicitly for the /client/api path which should fix this issue, regardless of the SSO URL and path that's being used.	2022-04-18 17:16:20 +05:30
..
main	Updated SAML2 auth sessionkey cookie path (#6149 )	2022-04-18 17:16:20 +05:30
test/java/org/apache/cloudstack	Merge branch '4.16'	2022-03-30 00:00:34 -03:00

Leo 70122007bb

Updated SAML2 auth sessionkey cookie path (#6149 )

This change will set the sessionkey under the /client/api path. This commit should prevent duplicate sessionkey cookies from being set on both /client (incorrect) and /client/api (correct). Prior to this commit, the /client version was being set while the /client/api version remained unchanged with an invalid sessionkey. As a result, subsequent requests after the SAML2 authentication would immediately fail with an invalid session and results in the user being logged out.

The sessionkey is now set explicitly for the /client/api path which should fix this issue, regardless of the SSO URL and path that's being used.

2022-04-18 17:16:20 +05:30

main

Updated SAML2 auth sessionkey cookie path (#6149 )

2022-04-18 17:16:20 +05:30

test/java/org/apache/cloudstack

Merge branch '4.16'

2022-03-30 00:00:34 -03:00