ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Larry McCay (JIRA)" <j...@apache.org>
Subject [jira] [Created] (RANGER-886) RangerSSOAuthenticationFilter needs to accommodate a missing expiration time
Date Wed, 16 Mar 2016 20:18:33 GMT
Larry McCay created RANGER-886:
----------------------------------

             Summary: RangerSSOAuthenticationFilter needs to accommodate a missing expiration
time
                 Key: RANGER-886
                 URL: https://issues.apache.org/jira/browse/RANGER-886
             Project: Ranger
          Issue Type: Bug
          Components: Ranger
            Reporter: Larry McCay
            Assignee: Larry McCay


The processing of the JWT token used within the KnoxSSO cookie currently decides that a missing
expiration time fails validation. The absence of the expiration time should be interpreted
as no expiration.

This ties the lifecycle of the JWT token to that of the cookie itself which will generally
be a session cookie.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message