[KNOX-2828] Token generation maximum token ttl unlimited not working when lifespan input is disabled - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Minor
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: 2.1.0
Component/s: Homepage, Server
Labels:
None

Description

Even though there's no documentation about this feature, when the KNOXTOKEN service param knox.token.ttl is set to -1 in the homepage topology, the token generation site indicates that the generated token lifetime can be unlimited. Combining this with configuring the knox.token.lifespan.input.enabled param of the KNOXTOKEN service to false and generating a token, result in generating a token which expiry date is: 01/01/1970, 00:59:59.

Configurations for recreation of the problem:
In homepage topology KNOXTOKEN service

<param>
      <name>knox.token.ttl</name>
      <value>-1</value>
</param>
<param>
      <name>knox.token.lifespan.input.enabled</name>
      <value>false</value>
</param>

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Marton Balázs

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 21/Oct/22 12:19

Updated:: 12/Nov/22 22:19