Description
We authenticate with CAS server and sessions expires after some time. This is no problem with the admin UI which will redirect you back to the login page to re-authenticate when you click on a link. However, this is not the case with the Lite UI, I will usually get a message box telling me that the XML request failed. If I re-authenticate using the Admin UI and go back in the Lite UI and do the same task, everything is back to normal. I believe this is because of the Ajax behind. It would be nice if there was a way to have a re-authentication (refresh the page maybe ? I think you need a new webrequest to have the app redirect you to the login page).
> I'm not 100% sure about how CAS works, but I believe the app servers detects that the CAS ticket is expired and sends a redirect (302) to the login page. I believe the problem with the Lite UI is that the AJAX request inside a page won't do a "regular" HTTP request and javascript might not handle the redirect properly (if it was sent with these type of request).
> If I do a request for the Lite UI home page directly I am prompted by the login page. The problem is when I try to do an action inside the page when the session is expired.
Attachments
Issue Links
- depends on
-
GRP-835 lite ui ajax shows uninformative message when session is logged out with HTTP 302 response
-
- Resolved
-