Bug #7737: Change for issue 6999 broke logout for PAM-based (intercept) authentication - Foreman

Actions

Copy link

Bug #7737

closed

Change for issue 6999 broke logout for PAM-based (intercept) authentication

Added by Jan Pazdziora over 9 years ago. Updated almost 6 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

Web Interface

Target version:

1.6.1

Difficulty:

Triaged:

Bugzilla link:

Pull request:

https://github.com/theforeman/foreman/pull/1807

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Description

The change that went into Foreman as 4e3a7e7a2a5 prevents /users/logout to be called as GET. Alas, app/services/sso/form_intercept.rb defines controller.main_app.logout_users_path as logout_url. Logging out from user session which was started via PAM-based (intercepted) logon form login fails with

The page you were looking for doesn't exist.
   You may have mistyped the address or the page may have moved.

Related issues 2 (0 open — 2 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

	Related to Foreman - Bug #6999: CVE-2014-3590 - User logout susceptible to CSRF attack	Closed	Daniel Lobato Garcia	08/08/2014			Actions
	Related to Foreman - Bug #7738: Some SSO methods may fail	Closed	Marek Hulán	09/29/2014			Actions

Project

General

Profile

Custom queries

Bug #7737

Change for issue 6999 broke logout for PAM-based (intercept) authentication

Updated by The Foreman Bot over 9 years ago

Updated by Marek Hulán over 9 years ago

Updated by Marek Hulán over 9 years ago

Updated by Jan Pazdziora over 9 years ago

Updated by Dominic Cleal over 9 years ago

Updated by Dominic Cleal over 9 years ago

Updated by Jan Pazdziora over 9 years ago