Openbravo Issue Tracking System - Openbravo ERP | |||||
| View Issue Details | |||||
| ID | Project | Category | View Status | Date Submitted | Last Update |
| 0002852 | Openbravo ERP | C. Security | public | 2008-04-11 19:11 | 2008-07-02 17:33 |
| Reporter | Dowid | ||||
| Assigned To | alostale | ||||
| Priority | normal | Severity | minor | Reproducibility | always |
| Status | closed | Resolution | fixed | ||
| Platform | OS | 5 | OS Version | ||
| Product Version | |||||
| Target Version | Fixed in Version | 2.40beta | |||
| Merge Request Status | |||||
| Review Assigned To | |||||
| OBNetwork customer | No | ||||
| Web browser | |||||
| Modules | Core | ||||
| Support ticket | |||||
| Regression level | |||||
| Regression date | |||||
| Regression introduced in release | |||||
| Regression introduced by commit | |||||
| Triggers an Emergency Pack | No | ||||
| Summary | 0002852: Clear Session button doesn't work correct. | ||||
| Description | Clear Session button doesn't work correct. Go to General Setup->Session Information Click "Clear session" button After pressing "Clear Session" button you are redirected to the Login page. This button works correctly in version 2.22 and doesn't work correctly in version 2.35. I belive the reason of this bug is that VariablesBase.clearSession method doesn't save the #Authenticated_user session atribute. Possible solution: Change clearSession method in the VariablesBase java class to: public void clearSession(boolean all) { if (log4j.isDebugEnabled()) log4j.debug("...: removing session"); String target=""; String authenticated_user=""; try { String sessionName; Enumeration<?> e = session.getAttributeNames(); while (e.hasMoreElements()) { sessionName = (String)e.nextElement(); if (log4j.isDebugEnabled()) log4j.debug(" session name: " + sessionName); if (!all && sessionName.equalsIgnoreCase("target")) target = (String) session.getAttribute(sessionName); if (!all && sessionName.equalsIgnoreCase("#Authenticated_user")) authenticated_user = (String) session.getAttribute(sessionName); session.removeAttribute(sessionName); e = session.getAttributeNames(); } } catch (Exception e) { log4j.error("clearSession error " + e); } if (!target.equals("")) session.setAttribute("TARGET", target); if (!authenticated_user.equals("")) session.setAttribute("#Authenticated_user", authenticated_user); } | ||||
| Steps To Reproduce | |||||
| Proposed Solution | |||||
| Additional Information | |||||
| Tags | No tags attached. | ||||
| Relationships | |||||
| Attached Files | |||||
| Issue History | |||||
| Date Modified | Username | Field | Change | ||
| 2008-07-02 17:33 | plujan | Status | resolved => closed | ||
| 2008-07-02 17:33 | plujan | Fixed in Version | 2.40alpha-r2 => 2.40beta | ||
| Notes | |||||
|
|
|||||
|
|
||||
|
|
|||||
|
|
||||
|
|
|||||
|
|
||||