ranger-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "rangerqa (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (RANGER-886) RangerSSOAuthenticationFilter needs to accommodate a missing expiration time
Date Wed, 16 Mar 2016 22:20:33 GMT

    [ https://issues.apache.org/jira/browse/RANGER-886?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15198303#comment-15198303

rangerqa commented on RANGER-886:

{color:red}-1 overall{color}.  Here are the results of testing the latest attachment
  against master revision 3abd4be.

    {color:red}-1 patch{color}.  master compilation may be broken.

Console output: https://builds.apache.org/job/PreCommit-RANGER-Build/109//console

This message is automatically generated.

> RangerSSOAuthenticationFilter needs to accommodate a missing expiration time
> ----------------------------------------------------------------------------
>                 Key: RANGER-886
>                 URL: https://issues.apache.org/jira/browse/RANGER-886
>             Project: Ranger
>          Issue Type: Bug
>          Components: Ranger
>            Reporter: Larry McCay
>            Assignee: Larry McCay
>         Attachments: RANGER-886-001.patch
> The processing of the JWT token used within the KnoxSSO cookie currently decides that
a missing expiration time fails validation. The absence of the expiration time should be interpreted
as no expiration.
> This ties the lifecycle of the JWT token to that of the cookie itself which will generally
be a session cookie.

This message was sent by Atlassian JIRA

View raw message