Package: release.debian.org Severity: normal User: release.debian....@packages.debian.org Usertags: unblock
Please consider unblocking planned upload of package x2goclient + * debian/patches: + + Add 0005_really-logout-from-broker-after-logout.patch. Really log-off a + user if --broker-autologoff is used. (Closes: #777314). -> In X2Go upstream we recently discovered an issue with the --broker-autologoff cmdline options. For details, please see explanation of this issue in #777314 [1]. [1] http://bugs.debian.org/777314 light+love Mike unblock x2goclient/4.0.3.1-4 -- System Information: Debian Release: 8.0 APT prefers stable APT policy: (990, 'stable'), (500, 'testing-updates'), (500, 'testing-proposed-updates'), (500, 'testing') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores) Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: sysvinit (via /sbin/init)
diff -Nru x2goclient-4.0.3.1/debian/changelog x2goclient-4.0.3.1/debian/changelog --- x2goclient-4.0.3.1/debian/changelog 2015-01-09 21:58:22.000000000 +0100 +++ x2goclient-4.0.3.1/debian/changelog 2015-02-07 13:15:59.000000000 +0100 @@ -1,3 +1,11 @@ +x2goclient (4.0.3.1-4) unstable; urgency=medium + + * debian/patches: + + Add 0005_really-logout-from-broker-after-logout.patch. Really log-off a + user if --broker-autologoff is used. (Closes: #777314). + + -- Mike Gabriel <sunwea...@debian.org> Sat, 07 Feb 2015 13:03:04 +0100 + x2goclient (4.0.3.1-3) unstable; urgency=medium * debian/patches: diff -Nru x2goclient-4.0.3.1/debian/patches/0005_really-logout-from-broker-after-logout.patch x2goclient-4.0.3.1/debian/patches/0005_really-logout-from-broker-after-logout.patch --- x2goclient-4.0.3.1/debian/patches/0005_really-logout-from-broker-after-logout.patch 1970-01-01 01:00:00.000000000 +0100 +++ x2goclient-4.0.3.1/debian/patches/0005_really-logout-from-broker-after-logout.patch 2015-02-07 13:00:26.000000000 +0100 @@ -0,0 +1,39 @@ +From: Sergey_Savko <sa...@tophouse.ru> +Date: Fri, 6 Feb 2015 10:30:33 +0000 (+0300) +Subject: Prevent passwordless re-logins into X2Go Session Broker if --broker-autologoff is... +X-Git-Url: http://code.x2go.org/gitweb?p=x2goclient.git;a=commitdiff_plain;h=3f85fe2 + +Prevent passwordless re-logins into X2Go Session Broker if --broker-autologoff is used on the cmdline. (Fixes: #782). +--- + +#diff --git a/debian/changelog b/debian/changelog +#index afd5bf9..c6fe947 100644 +#--- a/debian/changelog +#+++ b/debian/changelog +#@@ -35,6 +35,11 @@ x2goclient (4.0.3.2-0x2go1) UNRELEASED; urgency=medium +# * x2goclient.spec: +# - Always set BuildRoot: parameter. +# +#+ [ Sergey Savko ] +#+ * New upstream release (4.0.3.2): +#+ - Prevent passwordless re-logins into X2Go Session Broker if +#+ --broker-autologoff is used on the cmdline. (Fixes: #782). +#+ +# [ Heinrich Schuchardt ] +# * New upstream release (4.0.3.2): +# - Base the layout dialogue "Session ID" (which shows up when starting a +diff --git a/httpbrokerclient.cpp b/httpbrokerclient.cpp +index 5f009d4..5780cca 100644 +--- a/httpbrokerclient.cpp ++++ b/httpbrokerclient.cpp +@@ -242,6 +242,10 @@ void HttpBrokerClient::slotSshUserAuthError(QString error) + void HttpBrokerClient::getUserSessions() + { + QString brokerUser=config->brokerUser; ++ // Otherwise, after logout from the session, we will be connected by a previous user without a password by authid. ++ if (config->brokerAutologoff) { ++ nextAuthId=config->brokerUserId; ++ } + x2goDebug<<"called getUserSessions: brokeruser: "<<brokerUser<<" authid: "<<nextAuthId; + if(mainWindow->getUsePGPCard()) + brokerUser=mainWindow->getCardLogin(); diff -Nru x2goclient-4.0.3.1/debian/patches/series x2goclient-4.0.3.1/debian/patches/series --- x2goclient-4.0.3.1/debian/patches/series 2015-01-09 21:55:16.000000000 +0100 +++ x2goclient-4.0.3.1/debian/patches/series 2015-02-07 13:00:40.000000000 +0100 @@ -2,4 +2,5 @@ 0002_fix-GUI-for-session-profile-subfolders.patch 0003_use-app-setQuitOnLastWindowClose-false-for-X2GoClient-application.patch 0004-fix-quoting+escaping-ssh-commands.patch +0005_really-logout-from-broker-after-logout.patch 1001_deprecated-apache2-config.patch