[jira] [Commented] (GEODE-7851) Pulse should support OAuth2 authorization code flow

ASF subversion and git services (Jira) Fri, 24 Apr 2020 11:42:41 -0700


    [ 
https://issues.apache.org/jira/browse/GEODE-7851?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17091822#comment-17091822
 ]


ASF subversion and git services commented on GEODE-7851:
--------------------------------------------------------

Commit 2999414d6004b7725fd9652f75dbfdb549a2544d in geode's branch 
refs/heads/develop from Dale Emery
[ https://gitbox.apache.org/repos/asf?p=geode.git;h=2999414 ]

GEODE-7851: Pulse refreshes expired access tokens (#4977)

If a user's access token expires, Pulse attempts to refresh it. If the
refresh fails, Pulse logs the user out and redirects the browser to
/pulse/clusterLogout.

Changes in Repository:
- When OAuth is configured, before returning the user's cluster,
  getCluster() checks whether the user's access token has expired.
- If the access token has expired, the repository attempts to refresh
  it.  If the refresh succeeds, the repository reconnects the user's
  cluster to JMX and returns it.
- If the refresh fails, the repository disconnects the user's cluster
  from JMX, removes the cluster from the repository, and throws an
  authentication or authorization exception.

Changes in PulseController:
- If the service call throws an authentication or authorization
  exception, PulseController.  getPulseUpdate() returns a 401 status.

Changes in pulsescript/common.js:
- If a Pulse ajax call returns a 401 status, ajaxPost() redirects the
  browser to /pulse/clusterLogout to log the user out and request
  re-authorization.

Co-authored-by: Joris Melchior <[email protected]>
Co-authored-by: Dale Emery <[email protected]>
Co-authored-by: Jinmei Liao <[email protected]>

Co-authored-by: Kirk Lund <[email protected]>
Co-authored-by: Joris Melchior <[email protected]>
Co-authored-by: Jinmei Liao <[email protected]>

> Pulse should support OAuth2 authorization code flow
> ---------------------------------------------------
>
>                 Key: GEODE-7851
>                 URL: https://issues.apache.org/jira/browse/GEODE-7851
>             Project: Geode
>          Issue Type: New Feature
>          Components: docs, pulse
>            Reporter: Jinmei Liao
>            Assignee: Dale Emery
>            Priority: Major
>          Time Spent: 12h 10m
>  Remaining Estimate: 0h
>
> Instead of using username/password to log in to pulse, pulse should redirect 
> to a configured authentication provider to get access token to login.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

[jira] [Commented] (GEODE-7851) Pulse should support OAuth2 authorization code flow

Reply via email to