[jira] [Commented] (OAK-2872) ExternalLoginModule should clear state when login was not successful

Alex Parvulescu (JIRA) Wed, 27 May 2015 06:27:48 -0700

    [ 
https://issues.apache.org/jira/browse/OAK-2872?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14560952#comment-14560952
 ]


Alex Parvulescu commented on OAK-2872:
--------------------------------------

Created OAK-2913 as a follow-up for the TokenLoginModule observation.

> ExternalLoginModule should clear state when login was not successful
> --------------------------------------------------------------------
>
>                 Key: OAK-2872
>                 URL: https://issues.apache.org/jira/browse/OAK-2872
>             Project: Jackrabbit Oak
>          Issue Type: Bug
>          Components: auth-external
>            Reporter: Alex Parvulescu
>            Assignee: Alex Parvulescu
>              Labels: resilience
>             Fix For: 1.3.0
>
>
> As discussed in [1], it looks like the ExternalLoginModule ignores cleaning 
> up its internal state when login was not successful.
> What I assume happens next is the old session (probably the initial one 
> created on the very first login call) would be reused throughout the module's 
> lifetime, which would in the end result in the SNFEs post compaction.
> [1] http://markmail.org/thread/pcmlz74ngxl7sqfy



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Commented] (OAK-2872) ExternalLoginModule should clear state when login was not successful

Reply via email to