Actions
Bug #7737
closed
Change for issue 6999 broke logout for PAM-based (intercept) authentication
Description
The change that went into Foreman as 4e3a7e7a2a5 prevents /users/logout to be called as GET. Alas, app/services/sso/form_intercept.rb defines controller.main_app.logout_users_path as logout_url. Logging out from user session which was started via PAM-based (intercepted) logon form login fails with
The page you were looking for doesn't exist.
You may have mistyped the address or the page may have moved.
Updated by The Foreman Bot about 10 years ago
- Status changed from New to Ready For Testing
- Target version set to 1.7.3
- Pull request https://github.com/theforeman/foreman/pull/1807 added
- Pull request deleted (
)
Updated by Marek Hulán about 10 years ago
- Related to Bug #6999: CVE-2014-3590 - User logout susceptible to CSRF attack added
Updated by Marek Hulán about 10 years ago
- Related to Bug #7738: Some SSO methods may fail added
Updated by Jan Pazdziora about 10 years ago
- Subject changed from Change for issue 6999 broke logout for external authentication to Change for issue 6999 broke logout for PAM-based (intercept) authentication
Updated by Dominic Cleal about 10 years ago
- Translation missing: en.field_release set to 22
Updated by Dominic Cleal about 10 years ago
- Target version changed from 1.7.3 to 1.7.2
Updated by Jan Pazdziora about 10 years ago
- Status changed from Ready For Testing to Closed
- % Done changed from 0 to 100
Applied in changeset f432ee3f50e124a2e11773c86345ef67db8f6340.
Actions