Uploaded image for project: 'Apache Knox'
  1. Apache Knox
  2. KNOX-2393

Add a configurable list of paths that SSOCookieProvider can ignore

Attach filesAttach ScreenshotVotersWatch issueWatchersCreate sub-taskLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.4.0
    • Component/s: KnoxSSO
    • Labels:
      None

      Description

      There are some cases where browser sends automatic GET requests [1] (e.g. favicon.ico) that can interfere with KnoxSSO flow depending on the timing of the requests and cause SSO page to land on favicon icon.

      This could be achieved by adding a list of path for SSO to ignore using a property  gateway.knox.sso.unauthenticated.path.list

      e.g.

         <provider>
                 <role>federation</role>
                 <name>SSOCookieProvider</name>
                 <enabled>true</enabled>
                 <param>
                    <name>sso.authentication.provider.url</name>
                    <value>/gateway/knoxsso/api/v1/websso</value>
                 </param>
                 <param>
                    <name>sso.unauthenticated.path.list</name>
                    <value>favicon.ico;test;unsafepath</value>
                 </param>
          </provider>
       

      [1] https://bugs.chromium.org/p/chromium/issues/detail?id=39402

        Attachments

        Issue Links

          Activity

            People

            • Assignee:
              smore Sandeep More
              Reporter:
              smore Sandeep More

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 1h 50m
                1h 50m

                  Issue deployment