Uploaded image for project: 'eZ Publish / Platform'
  1. eZ Publish / Platform
  2. EZP-23214

User is logged out as result of role/policy changes (Memcache sessions)

    Details

      Description

      When using memcache-based session handler, changes to user roles/policies done through the admin siteaccess will cause the corresponding user to be logged out in the frontend.

      Steps to reproduce:
      1. On browser A, login to frontend with user a
      2. On browser B, login to admin interface.
        1. Assign a new role to user a, or modify one of the existing role by adding/removing policies

      Result: User A will be logged out.

      Config:

      framework:
          session:
              cookie_domain: .ezpublish.local
              save_path: %kernel.root_dir%/sessions
              handler_id: session.handler.memcache
       
      parameters:
          session_memcache_host: "127.0.0.1"
          session_memcache_port: 9001
          session_memcache_prefix: prefix_
          session_memcache_expire: 3600
       
      services:
          session.memcache:
              class: Memcache
              calls:
                   - [ addServer, [ %session_memcache_host%, %session_memcache_port% ]]
       
          session.handler.memcache:
              class: Symfony\Component\HttpFoundation\Session\Storage\Handler\MemcacheSessionHandler
              arguments: [ @session.memcache, { prefix: %session_memcache_prefix%, expiretime: %session_memcache_expire% } ]
      

        Issue Links

          Activity

          Joao Inacio (Inactive) created issue -
          Joao Inacio (Inactive) made changes -
          Field Original Value New Value
          Description When using memcache-based session handler, changes to user roles/policies done through the admin siteaccess will cause the corresponding user to be logged out in the frontend.

          h5. Steps to reproduce:
          # On browser A, login to frontend with user a
          # On browser B, login to admin interface.
          ## Assign a new role to user a, or modify one of the existing role by adding/removing policies

          Result: User A will be logged out.
          When using memcache-based session handler, changes to user roles/policies done through the admin siteaccess will cause the corresponding user to be logged out in the frontend.

          h5. Steps to reproduce:
          # On browser A, login to frontend with user a
          # On browser B, login to admin interface.
          ## Assign a new role to user a, or modify one of the existing role by adding/removing policies

          Result: User A will be logged out.

          h5. Config:
          {code}
          framework:
              session:
                  cookie_domain: .ezpublish.local
                  save_path: %kernel.root_dir%/sessions
                  handler_id: session.handler.memcache

          parameters:
              session_memcache_host: "127.0.0.1"
              session_memcache_port: 9001
              session_memcache_prefix: prefix_
              session_memcache_expire: 3600

          services:
              session.memcache:
                  class: Memcache
                  calls:
                       - [ addServer, [ %session_memcache_host%, %session_memcache_port% ]]

              session.handler.memcache:
                  class: Symfony\Component\HttpFoundation\Session\Storage\Handler\MemcacheSessionHandler
                  arguments: [ @session.memcache, { prefix: %session_memcache_prefix%, expiretime: %session_memcache_expire% } ]
          {config}
          Joao Inacio (Inactive) made changes -
          Description When using memcache-based session handler, changes to user roles/policies done through the admin siteaccess will cause the corresponding user to be logged out in the frontend.

          h5. Steps to reproduce:
          # On browser A, login to frontend with user a
          # On browser B, login to admin interface.
          ## Assign a new role to user a, or modify one of the existing role by adding/removing policies

          Result: User A will be logged out.

          h5. Config:
          {code}
          framework:
              session:
                  cookie_domain: .ezpublish.local
                  save_path: %kernel.root_dir%/sessions
                  handler_id: session.handler.memcache

          parameters:
              session_memcache_host: "127.0.0.1"
              session_memcache_port: 9001
              session_memcache_prefix: prefix_
              session_memcache_expire: 3600

          services:
              session.memcache:
                  class: Memcache
                  calls:
                       - [ addServer, [ %session_memcache_host%, %session_memcache_port% ]]

              session.handler.memcache:
                  class: Symfony\Component\HttpFoundation\Session\Storage\Handler\MemcacheSessionHandler
                  arguments: [ @session.memcache, { prefix: %session_memcache_prefix%, expiretime: %session_memcache_expire% } ]
          {config}
          When using memcache-based session handler, changes to user roles/policies done through the admin siteaccess will cause the corresponding user to be logged out in the frontend.

          h5. Steps to reproduce:
          # On browser A, login to frontend with user a
          # On browser B, login to admin interface.
          ## Assign a new role to user a, or modify one of the existing role by adding/removing policies

          Result: User A will be logged out.

          h5. Config:
          {code}
          framework:
              session:
                  cookie_domain: .ezpublish.local
                  save_path: %kernel.root_dir%/sessions
                  handler_id: session.handler.memcache

          parameters:
              session_memcache_host: "127.0.0.1"
              session_memcache_port: 9001
              session_memcache_prefix: prefix_
              session_memcache_expire: 3600

          services:
              session.memcache:
                  class: Memcache
                  calls:
                       - [ addServer, [ %session_memcache_host%, %session_memcache_port% ]]

              session.handler.memcache:
                  class: Symfony\Component\HttpFoundation\Session\Storage\Handler\MemcacheSessionHandler
                  arguments: [ @session.memcache, { prefix: %session_memcache_prefix%, expiretime: %session_memcache_expire% } ]
          {code}
          Joao Inacio (Inactive) made changes -
          Link This issue relates to EZP-22317 [ EZP-22317 ]
          Joao Inacio (Inactive) made changes -
          Link This issue relates to EZP-20880 [ EZP-20880 ]
          Joao Inacio (Inactive) made changes -
          Status Open [ 1 ] Confirmed [ 10037 ]
          Paulo Lopes (Inactive) made changes -
          Status Confirmed [ 10037 ] InputQ [ 10001 ]
          Joao Inacio (Inactive) made changes -
          Fix Version/s Customer request [ 11018 ]
          André Rømcke made changes -
          Rank Ranked higher
          André Rømcke made changes -
          Assignee André Rømcke [ andre.romcke@ez.no ]
          André Rømcke made changes -
          Component/s Documentation [ 10793 ]
          André Rømcke made changes -
          Status InputQ [ 10001 ] Development [ 3 ]
          André Rømcke made changes -
          Remaining Estimate 0 minutes [ 0 ]
          Time Spent 6 hours [ 21600 ]
          Worklog Id 49920 [ 49920 ]
          André Rømcke made changes -
          Status Development [ 3 ] Development review [ 10006 ]
          Fix Version/s 5.1 Maintenance [ 12301 ]
          André Rømcke made changes -
          Status Development review [ 10006 ] Development Review done [ 10028 ]
          André Rømcke made changes -
          Status Development Review done [ 10028 ] Documentation done [ 10011 ]
          Rui Silva (Inactive) made changes -
          Status Documentation done [ 10011 ] QA [ 10008 ]
          Assignee André Rømcke [ andre.romcke@ez.no ] Rui Silva [ rui.silva@ez.no ]
          Rui Silva (Inactive) made changes -
          Flagged Impediment [ 10000 ]
          Rui Silva (Inactive) made changes -
          Flagged Impediment [ 10000 ]
          Rui Silva (Inactive) made changes -
          Assignee Rui Silva [ rui.silva@ez.no ]
          Status QA [ 10008 ] Closed [ 6 ]
          Resolution Fixed [ 1 ]
          Rui Silva (Inactive) made changes -
          Resolution Fixed [ 1 ]
          Status Closed [ 6 ] Reopened [ 4 ]
          Rui Silva (Inactive) made changes -
          Time Spent 6 hours [ 21600 ] 1 day, 3 hours, 30 minutes [ 41400 ]
          Worklog Id 50158 [ 50158 ]
          Rui Silva (Inactive) made changes -
          Status Reopened [ 4 ] Closed [ 6 ]
          Resolution Fixed [ 1 ]
          Rui Silva (Inactive) made changes -
          Resolution Fixed [ 1 ]
          Status Closed [ 6 ] Reopened [ 4 ]
          Rui Silva (Inactive) made changes -
          Time Spent 1 day, 3 hours, 30 minutes [ 41400 ] 1 day, 5 hours, 30 minutes [ 48600 ]
          Worklog Id 50159 [ 50159 ]
          Rui Silva (Inactive) made changes -
          Status Reopened [ 4 ] Closed [ 6 ]
          Resolution Fixed [ 1 ]
          Rui Silva (Inactive) made changes -
          Resolution Fixed [ 1 ]
          Status Closed [ 6 ] Reopened [ 4 ]
          Rui Silva (Inactive) made changes -
          Time Spent 1 day, 5 hours, 30 minutes [ 48600 ] 1 day, 7 hours, 30 minutes [ 55800 ]
          Worklog Id 50160 [ 50160 ]
          Rui Silva (Inactive) made changes -
          Status Reopened [ 4 ] Closed [ 6 ]
          Resolution Fixed [ 1 ]
          Rui Silva (Inactive) made changes -
          Resolution Fixed [ 1 ]
          Status Closed [ 6 ] Reopened [ 4 ]
          Rui Silva (Inactive) made changes -
          Time Spent 1 day, 7 hours, 30 minutes [ 55800 ] 2 days, 30 minutes [ 59400 ]
          Worklog Id 50159 [ 50159 ]
          Rui Silva (Inactive) made changes -
          Status Reopened [ 4 ] Closed [ 6 ]
          Resolution Fixed [ 1 ]
          Rui Silva (Inactive) made changes -
          Resolution Fixed [ 1 ]
          Status Closed [ 6 ] Reopened [ 4 ]
          Rui Silva (Inactive) made changes -
          Time Spent 2 days, 30 minutes [ 59400 ] 2 days, 1 hour, 30 minutes [ 63000 ]
          Worklog Id 50160 [ 50160 ]
          Rui Silva (Inactive) made changes -
          Status Reopened [ 4 ] Closed [ 6 ]
          Resolution Fixed [ 1 ]
          Joao Inacio (Inactive) made changes -
          Link This issue relates to EZP-23267 [ EZP-23267 ]
          André Rømcke made changes -
          Workflow eZ Engineering Scrumban Workflow [ 64053 ] EZ* Development Workflow [ 85261 ]
          Alex Schuster made changes -
          Workflow EZ* Development Workflow [ 85261 ] EZEE Development Workflow [ 124060 ]

            People

            • Assignee:
              Unassigned
              Reporter:
              Joao Inacio (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 2 days, 1 hour, 30 minutes
                2d 1h 30m