Uploaded image for project: 'Service Packs and Hot Fixes'
  1. Service Packs and Hot Fixes
  2. MNT-18402

When using SSO bypass link, and trying to Logout, the user isn't redirected to login form

    Details

      Description

      [Technical Description of the issue]
      When logged in using SSO bypass link (<server>/share/page?pt=login), choosing Logout shows Basic authentication dialog box in browser instead of redirecting to the login form.

      [Steps to reproduce]
      1. Install Alfresco
      2. Configure external authentication, verify that when header is present you can login as a desired user.
      3. Disable ModifyHeaders plugin, use the direct SSO bypass link (<server>/share/page?pt=login).
      4. Login as admin user.
      5. Choose Logout from the user menu.

      [Expected Behaviour]
      User is logged out and the bypass login page is shown.

      [Observed Behaviour]
      User sees a Basic authentication prompt. User doesn’t see the login page unless he/she click Cancel. This is bad from user experience prospective.

      [Supporting evidence]
      Wireshark trace taken on 5.2.1 (when doing POST share/dologout)

      [notes]

      This might have been related to https://issues.alfresco.com/jira/browse/MNT-17858

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                closedbugs Closed Bugs
                Reporter:
                dsamarzija Dario Samarzija
              • Votes:
                0 Vote for this issue
                Watchers:
                10 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: