Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-11624

Can't login as amadmin after session cookie domain change

    Details

    • Type: Bug
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 13.5.2, 14.1.0, 14.1.1
    • Fix Version/s: None
    • Component/s: authentication
    • Labels:
    • Environment:
      CentOS7
      Java 1.8.0_131
      Apache Tomcat Version 8.5.15
      OpenAM-14.1.0-RC4

      Description

      Bug description

      I see User name/password combination is invalid after session cookie domain change. There are 2 session cookies IPlanetDirectoryPro, one is for domain example.com and one is for domain openam.example.com. Second one should be destroyed in Logout before, but it is not.

      How to reproduce the issue

      1. Login as amadmin
      2. Configuration - Global services - Platform
      3. Change "Cookie domains" - remove openam.example.com, add example.com
      4. Logout
      5. Login as amadmin

      (in 13.5.2 there Platform is under System tab)

      Expected behaviour
      Amadmin is logged in
      
      Current behaviour
      I see error Invalid password in GUI in AM 14.1.0 and 14.1.1 and 
      amAuthUtils:08/25/2017 12:28:22:039 PM CEST: Thread[http-nio-8081-exec-8,5,main]: TransactionId[dca243c3-282d-4df3-b8af-5e23d07ccee9-7607]
      ERROR: AuthUtils:getAuthContext(): Invalid Session Timed out
      in debug
      
      There is invalid session error in AM 13.5.2
      

      Work around

      clear all cookies in browser and login again
      OR
      delete IPlanetDirectoryPro cookie for domain openam.example.com and after page refresh amadmin is logged in without entering credentials again

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              lubomir.mlich Ľubomír Mlích
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: