[KNOX-1364] Cookie scoping path should contain the topology name - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 0.14.0
Fix Version/s: 1.3.0
Component/s: None
Labels:
- Patch
- review

Description

When using knox in PROXY only mode, cookies are set with the following domain and path.

*https://sandbox-hdf.hortonworks.com:5443/gateway/local-hdf/ambari#/login*
I login to ambari on this URL, and I get a cookie with
domain: sandbox-hdf.hortonworks.com
path: gateway

If I try to access another ambari instance through the same knox in the following URL:
*https://sandbox-hdf.hortonworks.com:5443/gateway/local-hdf2/ambari#/login*
domain: sandbox-hdf.hortonworks.com
path: gateway

So basically this cookie will overwrite the previous one and will trigger a logout from the first ambari ui.

Proposed solution:
include the topology name in the cookie path:
domain: sandbox-hdf.hortonworks.com
path: gateway/local-hdf

Attachments

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

KNOX-1364.patch
24/Jun/18 13:57
8 kB
Laszlo Nardai
Screen Shot 2018-12-07 at 9.19.39 AM.png
07/Dec/18 14:20
118 kB
Kevin Risden
Screen Shot 2018-12-07 at 9.20.27 AM.png
07/Dec/18 14:20
121 kB
Kevin Risden
KNOX-1364.patch
07/Dec/18 15:08
7 kB
Kevin Risden

Issue Links

relates to

KNOX-1645 Improve JSESSIONID handling

Closed

Activity

People

Assignee:: Kevin Risden

Reporter:: Laszlo Nardai

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 24/Jun/18 13:45

Updated:: 21/Oct/19 14:24

Resolved:: 07/Dec/18 15:37