[Bug 795742] New: Novell/Attachmate logout, affecting this bugzilla and who knows what else
https://bugzilla.novell.com/show_bug.cgi?id=795742 https://bugzilla.novell.com/show_bug.cgi?id=795742#c0 Summary: Novell/Attachmate logout, affecting this bugzilla and who knows what else Classification: openSUSE Product: openSUSE 12.2 Version: Final Platform: All OS/Version: All Status: NEW Severity: Minor Priority: P5 - None Component: Other AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: tonysu@su-networking.com QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/17.0 Firefox/17.0 Since the change from a Novell to Attachmate URL for Novell Authentication for web based services like this Bugzilla, there may be certificate issues. Reproducible: Always Steps to Reproduce: 1. Am uncertain for sure what the prior page was before logging in, was either Google Search page or a openSUSE Techniccal Forums page (more likely). 2. Login to Bugzilla 3. Logout of Bugzilla, "returning" to esp.novell.com, with certificate error. Actual Results: Logout of Bugzilla, "returning" to esp.novell.com, with certificate error. Expected Results: Should return me to whatever page I was at prior to logging in to Bugzilla Since I have not seen this error when leaving/logging out of the openSUSE Technical Help forums, it appears that there is likely different implementations of code used in different places instead of a single known working block of code used everywhere. al I consider this problem mostly cosmetic and only an irritation because I could certainly add esp.novell.com to my authorized certificates store although I am generally against adding certificates willy-nilly. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=795742 https://bugzilla.novell.com/show_bug.cgi?id=795742#c Marcus Rückert <mrueckert@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |mrueckert@suse.com AssignedTo|bnc-team-screening@forge.pr |mehle@novell.com |ovo.novell.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=795742 https://bugzilla.novell.com/show_bug.cgi?id=795742#c1 Matthew Ehle <mehle@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|mehle@novell.com |rywilson@novell.com --- Comment #1 from Matthew Ehle <mehle@novell.com> 2012-12-26 17:53:47 UTC --- Assigning to Ryan. He is already aware of the issue and is working on fixing the logout URL. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=795742 https://bugzilla.novell.com/show_bug.cgi?id=795742#c2 --- Comment #2 from Tony Su <tonysu@su-networking.com> 2012-12-28 21:56:33 UTC --- addendum: This a simple mis-match of the certificate CN with the landing page. After surfing various openSUSE and Novell website pages, this mis-match seems to be more the rule than the exception. In other words, someone seems to have simply changed the authenticator and/or URL without considering the consequences. Other recent pages include practically any Forums page when you're not actually in a Forum, eg forums.opensuse.com/english (which actuually is a login cert issue). As stated in my original post, I believe this entire problem can be remedied by inserting a working block of code wherever applicable. IMO since this is the logout and not the login, a common, universal landing page acknowledging successful logout (secured with SSL) can be sufficient. Or, the code re-directing to a landing page might be <unsecured> since I doubt that SSL should be required or maybe even expected when connecting to a logout landing page. Also, perhaps before stamping out these instances one by one perhaps some thought should be put into whether a consistent login/logoff solution can be applied to whatever website framework is used so that the solution might be "write once, apply everywhere." -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=795742 https://bugzilla.novell.com/show_bug.cgi?id=795742#c3 Ryan Wilson <rywilson@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |CLOSED Resolution| |FIXED --- Comment #3 from Ryan Wilson <rywilson@novell.com> 2013-01-16 22:33:48 UTC --- Logout URL has been corrected. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com