Fixes issue b/w Legacy and Primate UI wrt SessionID by Pearl1594 · Pull Request #4166 · apache/cloudstack

Pearl1594 · 2020-06-23T10:02:02Z

Description

When operating with both the legacy and Primate UI, due to clash in the sessionIDs generated during logins, one is unable to log in to Legacy UI once logged into Primate
Fix: If it is not a new session, then we use the latest session key (session ID in the cookies) for validation
Addresses issue: #4136

Types of changes

Breaking change (fix or feature that would cause existing functionality to change)
New feature (non-breaking change which adds functionality)
Bug fix (non-breaking change which fixes an issue)
Enhancement (improves an existing feature and functionality)
Cleanup (Code refactoring and cleanup, that may add test cases)

Pearl1594 · 2020-06-23T10:04:46Z

@blueorangutan package

blueorangutan · 2020-06-23T10:05:56Z

@Pearl1594 a Jenkins job has been kicked to build packages. I'll keep you posted as I make progress.

yadvr · 2020-06-23T10:15:01Z

Add the fixes... Issue reference please

blueorangutan · 2020-06-23T10:25:15Z

Packaging result: ✔centos7 ✔debian. JID-1430

Pearl1594 · 2020-06-23T10:26:45Z

@blueorangutan test

blueorangutan · 2020-06-23T10:27:56Z

@Pearl1594 a Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests

davidjumani · 2020-06-23T12:13:08Z

LGTM. Tested and able to login!

blueorangutan · 2020-06-23T22:27:22Z

Trillian test result (tid-1820)
Environment: kvm-centos7 (x2), Advanced Networking with Mgmt server 7
Total time taken: 41452 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr4166-t1820-kvm-centos7.zip
Intermittent failure detected: /marvin/tests/smoke/test_deploy_virtio_scsi_vm.py
Intermittent failure detected: /marvin/tests/smoke/test_diagnostics.py
Intermittent failure detected: /marvin/tests/smoke/test_internal_lb.py
Intermittent failure detected: /marvin/tests/smoke/test_iso.py
Intermittent failure detected: /marvin/tests/smoke/test_privategw_acl.py
Intermittent failure detected: /marvin/tests/smoke/test_vpc_redundant.py
Smoke tests completed. 73 look OK, 4 have error(s)
Only failed tests results shown below:

Test	Result	Time (s)	Test File
test_01_internallb_roundrobin_1VPC_3VM_HTTP_port80	`Failure`	350.77	test_internal_lb.py
test_02_internallb_roundrobin_1RVPC_3VM_HTTP_port80	`Failure`	395.30	test_internal_lb.py
test_03_vpc_internallb_haproxy_stats_on_all_interfaces	`Error`	188.02	test_internal_lb.py
test_04_rvpc_internallb_haproxy_stats_on_all_interfaces	`Error`	212.12	test_internal_lb.py
test_04_verify_guest_lspci	`Error`	810.67	test_deploy_virtio_scsi_vm.py
test_06_verify_guest_lspci_again	`Error`	810.72	test_deploy_virtio_scsi_vm.py
test_01_ping_in_vr_success	`Error`	60.28	test_diagnostics.py
test_07_arping_in_vr	`Failure`	5.17	test_diagnostics.py
test_08_arping_in_ssvm	`Failure`	5.15	test_diagnostics.py
test_09_arping_in_cpvm	`Failure`	5.14	test_diagnostics.py
test_02_vpc_privategw_static_routes	`Failure`	186.69	test_privategw_acl.py
test_03_vpc_privategw_restart_vpc_cleanup	`Failure`	176.18	test_privategw_acl.py
test_04_rvpc_privategw_static_routes	`Failure`	248.58	test_privategw_acl.py

yadvr · 2020-06-24T01:26:42Z

@blueorangutan test

blueorangutan · 2020-06-24T01:28:05Z

@rhtyd a Trillian-Jenkins test job (centos7 mgmt + kvm-centos7) has been kicked to run smoke tests

yadvr · 2020-06-24T01:29:26Z

server/src/main/java/com/cloud/api/ApiServlet.java

+                        HttpSession finalSession = session;
+                        List<Cookie> sessionKeys = Arrays.stream(cookies).filter(cookie ->  cookie.getName().equals(ApiConstants.SESSIONKEY)
+                                && cookie.getValue().equals(finalSession.getAttribute(ApiConstants.SESSIONKEY))).collect(Collectors.toList());
+                        Cookie validCookie = sessionKeys.get(0);


Why is the first cookie assumed the valid one? Is the core problem that more than one instance of sessionkey cookie exists?

When there are 2 sessions opened (primate and legacy UI) to the same domain, there will be multiple sessionkey cookies

blueorangutan · 2020-06-24T09:38:20Z

Trillian test result (tid-1824)
Environment: kvm-centos7 (x2), Advanced Networking with Mgmt server 7
Total time taken: 27733 seconds
Marvin logs: https://github.com/blueorangutan/acs-prs/releases/download/trillian/pr4166-t1824-kvm-centos7.zip
Intermittent failure detected: /marvin/tests/smoke/test_outofbandmanagement.py
Intermittent failure detected: /marvin/tests/smoke/test_privategw_acl.py
Smoke tests completed. 76 look OK, 1 have error(s)
Only failed tests results shown below:

Test	Result	Time (s)	Test File
test_02_vpc_privategw_static_routes	`Failure`	166.43	test_privategw_acl.py
test_03_vpc_privategw_restart_vpc_cleanup	`Failure`	170.90	test_privategw_acl.py
test_04_rvpc_privategw_static_routes	`Failure`	226.14	test_privategw_acl.py

Fix issue b/w Legacy and Primate UI wrt SessionID

992937b

yadvr added this to the 4.13.2.0 milestone Jun 23, 2020

yadvr reviewed Jun 24, 2020

View reviewed changes

Pearl1594 closed this Jun 26, 2020

Conversation

Pearl1594 commented Jun 23, 2020 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Description

Types of changes

Uh oh!

Pearl1594 commented Jun 23, 2020

Uh oh!

blueorangutan commented Jun 23, 2020

Uh oh!

yadvr commented Jun 23, 2020

Uh oh!

blueorangutan commented Jun 23, 2020

Uh oh!

Pearl1594 commented Jun 23, 2020

Uh oh!

blueorangutan commented Jun 23, 2020

Uh oh!

davidjumani commented Jun 23, 2020

Uh oh!

blueorangutan commented Jun 23, 2020

Uh oh!

yadvr commented Jun 24, 2020

Uh oh!

blueorangutan commented Jun 24, 2020

Uh oh!

yadvr Jun 24, 2020

Choose a reason for hiding this comment

Uh oh!

Pearl1594 Jun 24, 2020

Choose a reason for hiding this comment

Uh oh!

blueorangutan commented Jun 24, 2020

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

4 participants

Pearl1594 commented Jun 23, 2020 •

edited

Loading