[KNOX-688] KnoxSSO Authentication should not result in a valid JSESSIONID - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 0.9.0
Component/s: Server
Labels:
None

Description

The use of the KnoxSSO service should not allow for authentication caching with the session via JSESSIONID. At least not by default.

This improvement will allow session to be enabled for edge cases where this is required but by default will invalidate the created session upon cookie creation. The cookie will represent the session for these usecases and will not have any associated server side state.

Attachments

Activity

People

Assignee:: Larry McCay

Reporter:: Larry McCay

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 08/Mar/16 19:34

Updated:: 28/Mar/19 14:14

Resolved:: 11/Mar/16 03:21