Uploaded image for project: 'Guacamole'
  1. Guacamole
  2. GUACAMOLE-549

Store auth token within localStorage

    XMLWordPrintableJSON

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Major
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: 1.0.0
    • Component/s: guacamole
    • Labels:
      None

      Description

      The client-side of Guacamole has stored the authentication token for Guacamole's REST services within a cookie called GUAC_AUTH since roughly 0.9.4, part of the general refactor that occurred migrating from traditional Java servlets to an AngularJS single-page app. Though the cookie is only actually used client-side, it is still a cookie and is thus sent over the network automatically by the browser to the Guacamole server, where it is ultimately received and completely ignored.

      This unnecessary use of cookies should be removed and replaced with something more in line with the way the auth token is actually used, such as localStorage.

        Attachments

          Activity

            People

            • Assignee:
              mjumper Mike Jumper
              Reporter:
              mjumper Mike Jumper
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: