Details

    • Bug
    • Status: Closed
    • Blocker
    • Resolution: Fixed
    • None
    • 1.2.0
    • None
    • None

    Description

      Knox sets JSESSIONID and this can cause conflicts with services that also use JSESSIONID.

      Found while testing 1.2.0rc2 with Knox and multiple services. If you visit /yarn/ and then visit /zeppelin/ you will not be able to stay logged into Zeppelin. The issue is that Knox sets a JSESSIONID with a cookie path /gateway/TOPOLOGY. Zeppelin tries to set its JSESSIONID cookie on path / but the Knox JSESSIONID cookie is more specific and is picked up first. This means that the login is successful but the next activity in Zeppelin requires a second login again.

      Attachments

        1. KNOX-1645.patch
          3 kB
          Kevin Risden
        2. KNOX-1645.patch
          3 kB
          Kevin Risden

        Issue Links

          Activity

            krisden Kevin Risden added a comment -

            Initial patch to try to change the JSESSIONID cookie name to KNOXJSESSIONID. This should avoid conflicts with other services that use JSESSIONID.

            krisden Kevin Risden added a comment - Initial patch to try to change the JSESSIONID cookie name to KNOXJSESSIONID. This should avoid conflicts with other services that use JSESSIONID.
            krisden Kevin Risden added a comment -

            Fixed cookie name and tests. Need to run through all tests and manual test to confirm this fixes the issue identified.

            krisden Kevin Risden added a comment - Fixed cookie name and tests. Need to run through all tests and manual test to confirm this fixes the issue identified.
            krisden Kevin Risden added a comment -

            All verification tests pass. Need to manually confirm this fixed the issue.

            krisden Kevin Risden added a comment - All verification tests pass. Need to manually confirm this fixed the issue.
            krisden Kevin Risden added a comment -

            Manually confirmed that zeppelin conflict with JSESSIONID is fixed.

            krisden Kevin Risden added a comment - Manually confirmed that zeppelin conflict with JSESSIONID is fixed.

            Commit d49cb66256039a5dec2fb2c7bd968c7249294ef3 in knox's branch refs/heads/master from risdenk
            [ https://git-wip-us.apache.org/repos/asf?p=knox.git;h=d49cb66 ]

            KNOX-1645 - Improve JSESSIONID handling

            Signed-off-by: Kevin Risden <krisden@apache.org>

            jira-bot ASF subversion and git services added a comment - Commit d49cb66256039a5dec2fb2c7bd968c7249294ef3 in knox's branch refs/heads/master from risdenk [ https://git-wip-us.apache.org/repos/asf?p=knox.git;h=d49cb66 ] KNOX-1645 - Improve JSESSIONID handling Signed-off-by: Kevin Risden <krisden@apache.org>

            Commit 19b1d75bcb50f92a1768f8c92dd3ac35a30200dc in knox's branch refs/heads/v1.2.0 from risdenk
            [ https://git-wip-us.apache.org/repos/asf?p=knox.git;h=19b1d75 ]

            KNOX-1645 - Improve JSESSIONID handling

            Signed-off-by: Kevin Risden <krisden@apache.org>

            jira-bot ASF subversion and git services added a comment - Commit 19b1d75bcb50f92a1768f8c92dd3ac35a30200dc in knox's branch refs/heads/v1.2.0 from risdenk [ https://git-wip-us.apache.org/repos/asf?p=knox.git;h=19b1d75 ] KNOX-1645 - Improve JSESSIONID handling Signed-off-by: Kevin Risden <krisden@apache.org>

            Commit 660b5bca04504b3d801ae2bd74f3fce812003b19 in knox's branch refs/heads/master from risdenk
            [ https://git-wip-us.apache.org/repos/asf?p=knox.git;h=660b5bc ]

            KNOX-1645 - Add to CHANGES

            jira-bot ASF subversion and git services added a comment - Commit 660b5bca04504b3d801ae2bd74f3fce812003b19 in knox's branch refs/heads/master from risdenk [ https://git-wip-us.apache.org/repos/asf?p=knox.git;h=660b5bc ] KNOX-1645 - Add to CHANGES

            Commit 9eee807d23af2b2bf805f92293b354d4fcafb307 in knox's branch refs/heads/v1.2.0 from risdenk
            [ https://git-wip-us.apache.org/repos/asf?p=knox.git;h=9eee807 ]

            KNOX-1645 - Add to CHANGES

            jira-bot ASF subversion and git services added a comment - Commit 9eee807d23af2b2bf805f92293b354d4fcafb307 in knox's branch refs/heads/v1.2.0 from risdenk [ https://git-wip-us.apache.org/repos/asf?p=knox.git;h=9eee807 ] KNOX-1645 - Add to CHANGES
            krisden Kevin Risden added a comment -

            Found that Atlas and Ranger have both changed JSESSIONID cookie names due to similar issues.

            krisden Kevin Risden added a comment - Found that Atlas and Ranger have both changed JSESSIONID cookie names due to similar issues.

            People

              krisden Kevin Risden
              krisden Kevin Risden
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: