Uploaded image for project: 'OpenAM Agents'
  1. OpenAM Agents
  2. AMAGENTS-784

C Agent 5 ignores Cookies Domain List

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 5.0.0.0
    • Fix Version/s: 5.0.0.0
    • Component/s: Web Agents
    • Environment:
      Ubuntu 14.04 / Apache 2.4 / WPA: Version: 5.0.0-SNAPSHOT, Revision: 07f9ad7, Build machine: delacroix, Build date: Jul 19 2017 09:14:24

      Description

      Agent ignores Cookies Domain List.

      Steps to Reproduce

      Setup:

      Agent Profile > Global tab

      Agent Profile > SSO tab

      • Cross Domain SSO = enabled
      • Cookies Domain List:
        • forgerock.com
        • rck.me

      Create a policy to allow access to index.html page for both domains

      Steps to reproduce

      Case 1: Access page via cdsso domain (rck.me)
      1.) Hit the agent protected page under cdsso domain
      http://riso-ubuntu14.test.rck.me:80/index.html
      2.) Login as user and you will see index.page
      3.) Check the iPDP cookies
      Observed Result:
      OIDC iPDP cookie is created under "riso-ubuntu14.test.rck.me" cookie domain with flag host-only
      Expected Result:
      OIDC iPDP cookie is created under rck.me cookie domain

      Case 2: Access page via default domain (forgerock.com)
      1.) Hit the agent protected page under default domain
      http://riso-ubuntu14.test.forgerock.com:80/index.html
      2.) Login as user and you will see index.page
      3.) Check the iPDP cookies
      Observed Result:
      OIDC iPDP cookie is created under "riso-ubuntu14.test.forgerock.com" cookie domain with flag host-only
      Expected Result:
      OIDC iPDP cookie is created under forgerock.com cookie domain

      This issue is a regression compare to Agent 4

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              nick.james Nicholas James
              Reporter:
              richard.hruza Richard Hruza
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: