Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-12221

AM REST Authentication Login State is not HA

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Won't Fix
    • Affects Version/s: 13.5.1, 14.0.0, 5.5.1
    • Fix Version/s: None
    • Component/s: None
    • Labels:
      None

      Description

      Problem:
      In an environment with LB sticky, when performing a REST multi-factor authentication on the same instance and this request completed the first authentication module out of n-th multi-factor authentication module. Now sayt hat the authentication duration is still valid and the instance is restarted. When the next REST request is made to the next authentication stage (even to this same instance due to stickiness) with the AuthID/State is not found and the whole MFA authentication fails.

      Even if the request is rerouted to a new one instance, the MFA state is not maintained and loss.

      Expectation:
      The expectation is to ensure that say when a authentication request is send and doing half-way some of the Multi-factor auth stage, and when the instance that serving this is down, later subsequent request relate to this MFA stage are reroute should continue to work.
       
      This is logged to record the issue and relates similar to OPENAM-8336 (but for the case of seamless MFA autehntication HA)

       

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                chee-weng.chea C-Weng C
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: