Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-25021

Handle expired session in WebUI

    XMLWordPrintable

    Details

      Description

      Once the session is expired, if one clicks on a link in WebUI, the Basic Authentication prompt will be displayed. It is not the expected behavior when most users expect to be redirected to the login form.

      A similar issue was previously handled in the JSF UI with call to Automation operation through the JS Client: NXP-18995 => when issuing a 401 return code, the complete page was refreshed to do the redirect to the login page.

      To simulate the problem, this scenario can be followed:

      1. start Nuxeo
      2. log in
      3. navigate to a document
      4. in another tab, log out
      5. in the first tab, click on a link to another document

      The first step to fix the problem may be to change the Basic Authenticator configuration to set handlePrompt to false.

        Attachments

        1. expired session banner.gif
          652 kB
          Gabriel Barata
        2. timed_out_session.png
          136 kB
          Isabel Machado

          Issue Links

          depends on

          Bug - A problem which impairs or prevents the functions of the product. NXP-24792 Don't challenge clients with basic auth on api calls with invalid credentials

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. ELEMENTS-721 Fire dedicated event for session expired on nuxeo elements

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is duplicated by

          Improvement - An improvement or enhancement to an existing feature or task. NXP-24864 Handle the HTTP 401 Unauthorized error gracefully

          • Major - Major loss of function.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. NXP-20714 Handle expired session and login nicely

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is related to

          Bug - A problem which impairs or prevents the functions of the product. ELEMENTS-781 Fix nuxeo-page-provider obscuring errors

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. NXP-18995 Handle expired session when using a document suggestion widget

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. DESIGN-146 Give a clear feedback to the user when session timed out

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. NXP-26843 Fix security not restricted enough when logging anew with a restricted user

          • Critical - Crashes, loss of data, severe memory leak.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. NXP-26208 Handle expired session in WebUI properly

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 1 day, 3 hours
                  1d 3h