You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@nifi.apache.org by "Mark Payne (Jira)" <ji...@apache.org> on 2021/06/14 18:35:00 UTC

[jira] [Updated] (NIFI-8697) If JWT Token no longer valid, cookie should be removed

     [ https://issues.apache.org/jira/browse/NIFI-8697?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Mark Payne updated NIFI-8697:
-----------------------------
    Description: 
I was able to successfully login to my NiFi instance. I then shutdown and deleted the database_repository directory. Upon restart, I was able to login to NiFi, as the JWT token was no longer valid. However, going to /logout didn't remove the token either.

If the JWT Token is no longer valid when attempting to login, the endpoint should request that the cookie be deleted. In fact, going to /logout actually threw a NullPointerException.

  was:
I was able to successfully login to my NiFi instance. I then shutdown and deleted the database_repository directory. Upon restart, I was able to login to NiFi, as the JWT token was no longer valid. However, going to /logout didn't remove the token either.

If the JWT Token is no longer valid when attempting to login, the endpoint should request that the cookie be deleted.


> If JWT Token no longer valid, cookie should be removed
> ------------------------------------------------------
>
>                 Key: NIFI-8697
>                 URL: https://issues.apache.org/jira/browse/NIFI-8697
>             Project: Apache NiFi
>          Issue Type: Bug
>          Components: Core Framework, Core UI
>            Reporter: Mark Payne
>            Assignee: Mark Payne
>            Priority: Major
>
> I was able to successfully login to my NiFi instance. I then shutdown and deleted the database_repository directory. Upon restart, I was able to login to NiFi, as the JWT token was no longer valid. However, going to /logout didn't remove the token either.
> If the JWT Token is no longer valid when attempting to login, the endpoint should request that the cookie be deleted. In fact, going to /logout actually threw a NullPointerException.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)