Bug #7737: Change for issue 6999 broke logout for PAM-based (intercept) authentication - Foreman

Actions

Copy link

Bug #7737

closed

Change for issue 6999 broke logout for PAM-based (intercept) authentication

Added by Jan Pazdziora about 10 years ago. Updated over 6 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Category:

Web Interface

Target version:

1.6.1

Difficulty:

Triaged:

Bugzilla link:

Pull request:

https://github.com/theforeman/foreman/pull/1807

Fixed in Releases:

Found in Releases:

Red Hat JIRA:

Description

The change that went into Foreman as 4e3a7e7a2a5 prevents /users/logout to be called as GET. Alas, app/services/sso/form_intercept.rb defines controller.main_app.logout_users_path as logout_url. Logging out from user session which was started via PAM-based (intercepted) logon form login fails with

The page you were looking for doesn't exist.
   You may have mistyped the address or the page may have moved.

Related issues 2 (0 open — 2 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

	Related to Foreman - Bug #6999: CVE-2014-3590 - User logout susceptible to CSRF attack	Closed	Daniel Lobato Garcia	08/08/2014			Actions
	Related to Foreman - Bug #7738: Some SSO methods may fail	Closed	Marek Hulán	09/29/2014			Actions

Project

General

Profile

Custom queries

Bug #7737

Change for issue 6999 broke logout for PAM-based (intercept) authentication

Updated by The Foreman Bot about 10 years ago

Updated by Marek Hulán about 10 years ago

Updated by Marek Hulán about 10 years ago

Updated by Jan Pazdziora about 10 years ago

Updated by Dominic Cleal about 10 years ago

Updated by Dominic Cleal about 10 years ago

Updated by Jan Pazdziora about 10 years ago