Uploaded image for project: 'camunda BPM'
  1. camunda BPM
  2. CAM-9493

Session expires with delay after CSRF Token manipulation

XMLWordPrintable

    • Icon: Bug Report Bug Report
    • Resolution: Won't Fix
    • Icon: L3 - Default L3 - Default
    • None
    • 7.9.6
    • None
    • None

      Steps to Reproduce

      • open Tasklist
      • manipulate the CSRF token
      • select a new filter

      Expected Behavior
      session expires --> user will be logged out

      Observed Behavior
      Loading the list of tasks finished with failures. The user is still logged in

      Hint
      With the next post request the user will be logged out.
      A single post request is not enough to perform the logout after a CSRF error.

      Used Environment
      Engine: jboss-7.9.6
      Browser: Firefox
      OS: Linux

        This is the controller panel for Smart Panels app

              Unassigned Unassigned
              michael.schoettes Michael Schoettes
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: