Uploaded image for project: 'Dev - Nexus Repo'
  1. Dev - Nexus Repo
  2. NEXUS-14653

UI session time out not respected

    Details

    • Story Points:
      1
    • Notability:
      n/a

      Description

      Admin user login.
      Edits UI: Settings capability from default values.
      Authenticated User polling interval was set to 2 minutes
      Session timeout set to 3 minutes.
      Save capability.
      Logout.
      Login as admin user and wait on welcome screen.

      2017-10-19 15:12:04,209-0300 DEBUG [qtp1248985032-62] *SYSTEM org.eclipse.jetty.server.Server - REQUEST POST /service/rapture/session on HttpChannelOverHttp@760f6033{r=40,c=false,a=DISPATCHED,uri=//localhost:8081/service/rapture/session}
      2017-10-19 15:12:04,213-0300 INFO  [qtp1248985032-62] admin org.sonatype.nexus.rapture.internal.security.SessionServlet - Created session for user: admin
      2017-10-19 15:12:04,214-0300 DEBUG [qtp1248985032-62] *SYSTEM org.eclipse.jetty.server.Server - handled=true async=false committed=false on HttpChannelOverHttp@760f6033{r=40,c=false,a=DISPATCHED,uri=//localhost:8081/service/rapture/session}
      

      Stay on welcome screen.

      After approx 5 minutes ( not the expected 3) , UI timed out and prompts user that session will timeout in 30 seconds and begins count down.

      Allow the session to timeout. The UI sends an explicit request ( not user initiated ) to delete the session.

      2017-10-19 15:18:27,766-0300 DEBUG [qtp1248985032-224] *SYSTEM org.eclipse.jetty.server.Server - REQUEST DELETE /service/rapture/session on HttpChannelOverHttp@7ba4da46{r=194,c=false,a=DISPATCHED,uri=//localhost:8081/service/rapture/session}
      2017-10-19 15:18:27,767-0300 INFO  [qtp1248985032-224] admin org.sonatype.nexus.rapture.internal.security.SessionServlet - Deleting session for user: admin
      2017-10-19 15:18:27,767-0300 DEBUG [qtp1248985032-224] *SYSTEM org.eclipse.jetty.server.Server - handled=true async=false committed=false on HttpChannelOverHttp@7ba4da46{r=194,c=false,a=DISPATCHED,uri=//localhost:8081/service/rapture/session}
      

      Expected

      The UI session timeout after inactivity should be respected for any new sessions while the regular polling the UI does should not be classified as 'activity'.

      Reference

      https://groups.google.com/a/glists.sonatype.com/d/msgid/nexus-users/68d7050b-18bb-4793-b23b-f2efd8ec6306%40glists.sonatype.com?utm_medium=email&utm_source=footer

       

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              Unassigned Unassigned
              Reporter:
              plynch Peter Lynch
              Last Updated By:
              Michael Prescott Michael Prescott
              Votes:
              1 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved:
                Date of First Response:

                  tigCommentSecurity.panel-title