Uploaded image for project: 'Identity Provider'
  1. Identity Provider
  2. IDP-920

Secondary session index update fails when a fixed NameID is used

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 3.2.0, 3.2.1
    • Fix Version/s: 3.3.0
    • Component/s: Session
    • Labels:
      None

      Description

      The session manager has a flaw in the indexBySPSession routine that maintains the backwards index from SP+NameID -> session ID for SAML logout.

      If the same SP + NameID is indexed against the same session a second time, the code is broken and it falls into a retry loop and retries the operation 10 times before giving up. The actual impact is just overhead because the session's already indexed, but it's noisy and confusing in the log, plus wastes I/O.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              cantor.2@osu.edu Scott Cantor
              Reporter:
              cantor.2@osu.edu Scott Cantor
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 30 minutes
                  30m