[OPENAM-14505] Agent sessions are constrained by Session Quota - ForgeRock JIRA

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 6.0.0, 6.5.0, 6.5.0.1
Fix Version/s: 6.0.0.7, 6.5.1, 6.5.0.2, 7.0.0
Component/s: session, web agents
Labels:
- EDISON

Target Version/s:

6.0.0.7, 6.5.1, 6.5.0.2, 7.0.0

Sprint:
AM Sustaining Sprint 60
Story Points:
2
Needs backport:

Yes

Support Ticket IDs:

Verified Version/s:

6.0.0.7, 6.5.0.2
Needs QA verification:

No
Functional tests:

No
Are the reproduction steps defined?:

Yes and I used the same an in the description

Description

Bug description

When session quotas are enabled, the number of web agents sessions is limited to the number of Active User Sessions

How to reproduce the issue

Install AM 6.5.0.1
Enable Global Service Session Quota Constraints.
Set Resulting behavior if session quota exhausted to DENY_ACCESS
Create a realm, Add the Session Service
Create a Web Agent profile in the realm.
Enable SSO Only Mode for the Agent profile.
Install Apache 2.4 and Web agent 5.5.1.0 specifying the realm.
Run a simple load test on the web server requesting pages.

Expected behaviour

Responses are redirects for authentication

Current behaviour

Responses will start to return HTTP 403 Forbidden

Work around

Not tested - Configure the Web Agent profile in a separate realm with Active User Sessions configured with a value sufficient to allow the required number of agent logins calculated from Apache mpm_worker_module configuration.

Code analysis

None

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

Attachments

logs.tar
5.82 MB
27/Feb/19 2:40 PM

Activity

People

Assignee:

Jonathan Thomas

Reporter:

Tim Chandler

Votes:

0 Vote for this issue

Watchers:

9 Start watching this issue

Dates

Created:

27/Feb/19 12:39 PM

Updated:

22/Oct/19 2:11 PM

Resolved:

04/Mar/19 4:36 PM