Skip to content

UI: Logout before login #6193

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
rohityadavcloud merged 1 commit into from
Apr 6, 2022
Merged

UI: Logout before login #6193

rohityadavcloud merged 1 commit into from
Apr 6, 2022

Conversation

@nvazquez
Copy link
Contributor

@nvazquez nvazquez commented Apr 1, 2022

Description

This PR calls the logout API before login, to cleanup any duplicate sessionkey, as it was done on the legacy UI: #4326
Fixes: #6127

Types of changes

  • Breaking change (fix or feature that would cause existing functionality to change)
  • New feature (non-breaking change which adds functionality)
  • Bug fix (non-breaking change which fixes an issue)
  • Enhancement (improves an existing feature and functionality)
  • Cleanup (Code refactoring and cleanup, that may add test cases)

Feature/Enhancement Scale or Bug Severity

Feature/Enhancement Scale

  • Major
  • Minor

Bug Severity

  • BLOCKER
  • Critical
  • Major
  • Minor
  • Trivial

Screenshots (if appropriate):

How Has This Been Tested?

@nvazquez nvazquez added this to the 4.17.0.0 milestone Apr 1, 2022
@nvazquez
Copy link
Contributor Author

nvazquez commented Apr 1, 2022

@blueorangutan ui

@nvazquez nvazquez mentioned this pull request Apr 1, 2022
Closed
@blueorangutan
Copy link

blueorangutan commented Apr 1, 2022

@nvazquez a Jenkins job has been kicked to build UI QA env. I'll keep you posted as I make progress.

@blueorangutan
Copy link

blueorangutan commented Apr 1, 2022

UI build: ✔️
Live QA URL: http://qa.cloudstack.cloud:8080/client/pr/6193 (SL-JID-1327)

@rohityadavcloud
Copy link
Member

rohityadavcloud commented Apr 2, 2022

The only case worth checking is the SAML based SSO mechanism, not sure if the login method is hit; otherwise LGTM

utchoang
utchoang approved these changes Apr 4, 2022
View reviewed changes
Copy link

@utchoang utchoang left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

weizhouapache
weizhouapache approved these changes Apr 4, 2022
View reviewed changes
Copy link
Member

@weizhouapache weizhouapache left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

code lgtm
I do not know if this fixes #6127

@rohityadavcloud rohityadavcloud merged commit 4193109 into apache:main Apr 6, 2022
@borisstoyanov borisstoyanov mentioned this pull request Jun 2, 2022
Closed
RodrigoDLopez pushed a commit to RodrigoDLopez/cloudstack that referenced this pull request Aug 23, 2022
@RodrigoDLopez
ui: Logout before login (apache#6193)
233cf15
RodrigoDLopez added a commit to RodrigoDLopez/cloudstack that referenced this pull request Aug 23, 2022
@RodrigoDLopez
Merge branch 'logout-before-login-ui' into '4.16.0.0-scclouds'
10aba1e 
ui: Logout before login (apache#6193)

See merge request scclouds/scclouds!264
shwstppr pushed a commit to shapeblue/cloudstack that referenced this pull request Mar 13, 2023
@Luis-3M @nvazquez
Apple base416 saml fixes (apache#236)
6df183f 
* Add EncryptedElementType key resolver to SAML plugin

* saml: Fix SAML SSO plugin redirect URL (apache#6457)

This PR fixes the issue apache#6427 -> SAML request must be appended to an IdP URL as a query param with an ampersand, if the URL already contains a question mark, as opposed to always assume that IdP URLs don't have any query params.
Google's IdP URL for instance looks like this: https://accounts.google.com/o/saml2/idp?idpid=<ID>, therefore the expected redirect URL would be https://accounts.google.com/o/saml2/idp?idpid=<ID>&SAMLRequest=<SAMLRequest>

This code change is backwards compatible with the current behaviour.

* Apply backport for SAML session cookie path

apache#6149

* ui: Logout before login (apache#6193)

This PR calls the logout API before login, to cleanup any duplicate sessionkey, as it was done on the legacy UI: apache#4326
Fixes: apache#6127

---------

Co-authored-by: Marcus Sorensen <mls@apple.com>
Co-authored-by: Luis Moreira <Luis-3M@users.noreply.github.com>
Co-authored-by: Nicolas Vazquez <nicovazquez90@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rohityadavcloud rohityadavcloud rohityadavcloud approved these changes

@utchoang utchoang utchoang approved these changes

@weizhouapache weizhouapache weizhouapache approved these changes

@davidjumani davidjumani Awaiting requested review from davidjumani

@Pearl1594 Pearl1594 Awaiting requested review from Pearl1594

Assignees

No one assigned

Labels

component:UI type:enhancement

Projects

No open projects
Apache CloudStack 4.17.0
Status: Done

Milestone

4.17.0.0

Development

Successfully merging this pull request may close these issues.

SSO fails with error "Expired session, missing signature, or missing apiKey"

5 participants

@nvazquez @blueorangutan @rohityadavcloud @utchoang @weizhouapache