-
Type:
Bug
-
Status: Resolved
-
Priority:
Minor
-
Resolution: Fixed
-
Affects Version/s: 2023.10
-
Component/s: Authentication
-
Release Notes Summary:Keycloak logout URI doesn't keep previous query parameters.
-
Tags:
-
Backlog priority:700
-
Team:PLATFORM
-
Sprint:nxplatform #122, nxplatform #123, nxplatform #124
-
Story Points:3
Pre-requisites: configure Keycloak and Nuxeo by following the configuration provided on NXP-32352
Steps to reproduce:
- Navigate to Nuxeo http://localhost:8080/nuxeo
- The system redirects to Keycloak login page
- Use the credentials test/test
- The user "test" is successfully connected
- Open the Network tab in the Developer tools and filter on "logout"
- Log out from Nuxeo
- Observe the logout URL in the Network tab : it contains one time each parameter id_token_hint and post_logout_redirect_uri
- Log in again with the test user
- Log out again
- Observe the logout URL in the Network tab : it contains two times each parameter id_token_hint and post_logout_redirect_uri => this is the bug
You can continue over and over until the logout URL will be too long and the logout will fail
Expected behavior: the logout URL is built with each parameter only once
- is caused by
-
-
- Resolved
-
