Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-25021

Handle expired session in WebUI

    XMLWordPrintable

    Details

      Description

      Once the session is expired, if one clicks on a link in WebUI, the Basic Authentication prompt will be displayed. It is not the expected behavior when most users expect to be redirected to the login form.

      A similar issue was previously handled in the JSF UI with call to Automation operation through the JS Client: NXP-18995 => when issuing a 401 return code, the complete page was refreshed to do the redirect to the login page.

      To simulate the problem, this scenario can be followed:

      1. start Nuxeo
      2. log in
      3. navigate to a document
      4. in another tab, log out
      5. in the first tab, click on a link to another document

      The first step to fix the problem may be to change the Basic Authenticator configuration to set handlePrompt to false.

        Attachments

          Issue Links

          depends on

          Bug - A problem which impairs or prevents the functions of the product. NXP-24792 Don't challenge clients with basic auth on api calls with invalid credentials

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. ELEMENTS-721 Fire dedicated event for session expired on nuxeo elements

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is duplicated by

          Improvement - An improvement or enhancement to an existing feature or task. NXP-24864 Handle the HTTP 401 Unauthorized error gracefully

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. NXP-20714 Handle expired session and login nicely

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is related to

          Bug - A problem which impairs or prevents the functions of the product. ELEMENTS-781 Fix nuxeo-page-provider obscuring errors

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. NXP-18995 Handle expired session when using a document suggestion widget

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. DESIGN-146 Give a clear feedback to the user when session timed out

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. NXP-26843 Fix security not restricted enough when logging anew with a restricted user

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. NXP-26208 Handle expired session in WebUI properly

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 day, 3 hours
                  1d 3h