Bug 39898 - username gets removed from loginform on session timeout
username gets removed from loginform on session timeout
Status: CLOSED FIXED
Product: UCS
Classification: Unclassified
Component: UMC (Generic)
UCS 4.1
Other Linux
: P5 normal (vote)
: UCS 4.1-0-errata
Assigned To: Florian Best
Alexander Kramer
:
Depends on:
Blocks: 40118
  Show dependency treegraph
 
Reported: 2015-11-12 11:18 CET by Florian Best
Modified: 2016-04-06 10:49 CEST (History)
3 users (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Ticket number:
Bug group (optional):
Max CVSS v3 score:


Attachments
patch (3.30 KB, patch)
2015-11-12 11:18 CET, Florian Best
Details | Diff

Note You need to log in before you can comment on or make changes to this bug.
Description Florian Best univentionstaff 2015-11-12 11:18:17 CET
The username field gets cleared in the login dialog if the session times out. As the field is disabled one cannot overwrite it so that a page reload is required.
Comment 1 Florian Best univentionstaff 2015-11-12 11:18:53 CET
Created attachment 7286 [details]
patch
Comment 2 Erik Damrose univentionstaff 2015-11-17 09:45:17 CET
The username is also not pre-filled if the login page is loaded with the query parameter '?username=Administrator', as it happens in appliance mode with an external browser
Comment 3 Florian Best univentionstaff 2015-11-17 22:20:40 CET
2015-11-17-univention-management-console-frontend.yaml:
r65680 | YAML Bug #39898

univention-management-console-frontend (5.0.63-3):
r65679 | Bug #39898: fix username field in login dialog
Comment 4 Alexander Kramer univentionstaff 2015-11-18 09:46:50 CET
frontend 5.0.63-3.1190.201511172215

OK - username is pre-filled as it happens in appliamce mode with an external browser

OK - the username field is not cleared out after umc/http/session/timeout

FAIL - it is not possible to change the username after umc/http/session/timeout because the input field is disabled. If one tries to delete the username by using the backspace key, she/he will trigger the browser history
Comment 5 Florian Best univentionstaff 2015-11-18 10:03:06 CET
(In reply to Alexander Kramer from comment #4)
> FAIL - it is not possible to change the username after
> umc/http/session/timeout because the input field is disabled. If one tries
> to delete the username by using the backspace key, she/he will trigger the
> browser history
This is on purpose to prevent that you have an opened module while you change your username. If you want to change the username you need to reload the page.
Comment 6 Alexander Kramer univentionstaff 2015-11-18 12:15:06 CET
(In reply to Florian Best from comment #5)
> (In reply to Alexander Kramer from comment #4)
> > FAIL - it is not possible to change the username after
> > umc/http/session/timeout because the input field is disabled. If one tries
> > to delete the username by using the backspace key, she/he will trigger the
> > browser history
> This is on purpose to prevent that you have an opened module while you
> change your username. If you want to change the username you need to reload
> the page.

OK - as discussed input field stays disabled

OK - yaml file
Comment 7 Janek Walkenhorst univentionstaff 2015-11-26 15:17:10 CET
<http://errata.software-univention.de/ucs/4.1/2.html>