Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Obsolete
Priority: Medium
Fix Version/s: Q2FY19
Affects Version/s: None
Component/s: developer.jboss.org - ARCHIVE, sso.jboss.org Login Server (CAS)
Labels:
None

Steps to Reproduce:

Hide

1: Logout of sso.jboss.org totally
2: Log in to community.jboss.org, and tick the remember me button
3: Verify you are logged in to community.jboss.org
4: Leave that browser alone until the next day
5: Visit community.jboss.org, and notice that you are not logged in
6: Hit login
7: You are now logged in to community.jboss.org

Show
1: Logout of sso.jboss.org totally 2: Log in to community.jboss.org, and tick the remember me button 3: Verify you are logged in to community.jboss.org 4: Leave that browser alone until the next day 5: Visit community.jboss.org, and notice that you are not logged in 6: Hit login 7: You are now logged in to community.jboss.org

SFDC Cases Counter:
SFDC Cases Links:

Description

You can still be logged in to sso.jboss.org but not logged in to community.jboss.org. This produces a very odd user experience, where you can be logged in to some systems, but not others. This is especially apparent with REST calls to community.jboss.org, as the REST call to sso.jboss.org tells us that the user is logged in (so we show the user is logged in), but the REST call to community.jboss.org returns a 403. It's very counterintuitive to realise you have to then visit community.jboss.org to get your login restored.

I guess that the login check on jive relies on some session, and doesn't check sso.jboss.org to gain the authoritative state of login.

Attachments

Issue Links

relates to

DEVELOPER-668 Add static terms and conditions page to www.jboss.org

Done

Activity

People

Assignee:: Unassigned

Reporter:: Pete Muir (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2014/08/08 5:35 AM

Updated:: 2023/10/06 3:33 PM

Resolved:: 2018/07/19 4:08 AM