Uploaded image for project: 'Apache Guacamole - Contributions'
  1. Apache Guacamole - Contributions
  2. GUAC-1364

Allow extensions to invalidate user sessions

    XMLWordPrintable

    Details

    • Type: Story
    • Status: Done
    • Priority: Major
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: 0.9.9
    • Component/s: guacamole, guacamole-ext
    • Labels:
      None
    • Sprint:
      DEV 2015-10-16
    • Story Points:
      5

      Description

      There are cases where the best user experience requires explicitly destroying the user session (and auth token), forcing the user immediately back to a login screen, but this is currently impossible.

      Extensions need to be able to forcibly kill a user's session and invalidate their auth token. When this happens, they should be immediately taken to a login screen, regardless of where they currently are.

      This should effectively solve GUAC-1250 ("Display login page instead of 'reconnect/home' when session expires").

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              mike.jumper Michael Jumper
              Reporter:
              mike.jumper Michael Jumper
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 4h
                  4h
                  Remaining:
                  Time Spent - 3.5h Remaining Estimate - 0.5h
                  0.5h
                  Logged:
                  Time Spent - 3.5h Remaining Estimate - 0.5h
                  3.5h