You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@ranger.apache.org by ga...@apache.org on 2016/05/13 13:16:31 UTC
incubator-ranger git commit: RANGER-981: Change session cookie name
from JSESSIONID to RANGERADMINSESSIONID
Repository: incubator-ranger
Updated Branches:
refs/heads/master 6228e4e3a -> 608776712
RANGER-981: Change session cookie name from JSESSIONID to RANGERADMINSESSIONID
Signed-off-by: Gautam Borad <ga...@apache.org>
Project: http://git-wip-us.apache.org/repos/asf/incubator-ranger/repo
Commit: http://git-wip-us.apache.org/repos/asf/incubator-ranger/commit/60877671
Tree: http://git-wip-us.apache.org/repos/asf/incubator-ranger/tree/60877671
Diff: http://git-wip-us.apache.org/repos/asf/incubator-ranger/diff/60877671
Branch: refs/heads/master
Commit: 60877671289426847a5f54a0ae3877c4f420c75a
Parents: 6228e4e
Author: Mehul Parikh <me...@freestoneinfotech.com>
Authored: Tue May 10 14:37:29 2016 +0530
Committer: Gautam Borad <ga...@apache.org>
Committed: Fri May 13 18:46:19 2016 +0530
----------------------------------------------------------------------
.../org/apache/ranger/security/web/filter/RangerKrbFilter.java | 2 +-
.../src/main/resources/conf.dist/security-applicationContext.xml | 2 +-
security-admin/src/main/webapp/WEB-INF/web.xml | 4 +++-
3 files changed, 5 insertions(+), 3 deletions(-)
----------------------------------------------------------------------
http://git-wip-us.apache.org/repos/asf/incubator-ranger/blob/60877671/security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKrbFilter.java
----------------------------------------------------------------------
diff --git a/security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKrbFilter.java b/security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKrbFilter.java
index 88ab020..120f098 100644
--- a/security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKrbFilter.java
+++ b/security-admin/src/main/java/org/apache/ranger/security/web/filter/RangerKrbFilter.java
@@ -502,7 +502,7 @@ public class RangerKrbFilter implements Filter {
Collection<String> headerNames = httpResponse.getHeaderNames();
for(String headerName : headerNames){
String value = httpResponse.getHeader(headerName);
- if(headerName.equalsIgnoreCase("Set-Cookie") && value.startsWith("JSESSIONID")){
+ if(headerName.equalsIgnoreCase("Set-Cookie") && value.startsWith("RANGERADMINSESSIONID")){
chk = false;
break;
}
http://git-wip-us.apache.org/repos/asf/incubator-ranger/blob/60877671/security-admin/src/main/resources/conf.dist/security-applicationContext.xml
----------------------------------------------------------------------
diff --git a/security-admin/src/main/resources/conf.dist/security-applicationContext.xml b/security-admin/src/main/resources/conf.dist/security-applicationContext.xml
index 6becfcd..66ef8af 100644
--- a/security-admin/src/main/resources/conf.dist/security-applicationContext.xml
+++ b/security-admin/src/main/resources/conf.dist/security-applicationContext.xml
@@ -54,7 +54,7 @@ http://www.springframework.org/schema/security/spring-security-oauth2-1.0.xsd">
<security:custom-filter position="LAST" ref="userContextFormationFilter"/>
<security:access-denied-handler error-page="/public/failedLogin.jsp?access_denied=1"/>
- <security:logout delete-cookies="JSESSIONID,xa_rmc" logout-url="/logout.html" success-handler-ref="customLogoutSuccessHandler" />
+ <security:logout delete-cookies="RANGERADMINSESSIONID,xa_rmc" logout-url="/logout.html" success-handler-ref="customLogoutSuccessHandler" />
<http-basic entry-point-ref="authenticationProcessingFilterEntryPoint"/>
</security:http>
http://git-wip-us.apache.org/repos/asf/incubator-ranger/blob/60877671/security-admin/src/main/webapp/WEB-INF/web.xml
----------------------------------------------------------------------
diff --git a/security-admin/src/main/webapp/WEB-INF/web.xml b/security-admin/src/main/webapp/WEB-INF/web.xml
index a770e4b..bd29a3e 100644
--- a/security-admin/src/main/webapp/WEB-INF/web.xml
+++ b/security-admin/src/main/webapp/WEB-INF/web.xml
@@ -80,8 +80,9 @@
<session-timeout>60</session-timeout>
<tracking-mode>COOKIE</tracking-mode>
<cookie-config>
+ <name>RANGERADMINSESSIONID</name>
<http-only>true</http-only>
- </cookie-config>
+ </cookie-config>
</session-config>
<error-page>
<error-code>500</error-code>
@@ -91,4 +92,5 @@
<error-code>404</error-code>
<location>/public/error404.jsp</location>
</error-page>
+
</web-app>