Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(oidc): Avoid storing Pac4j profile in cookie #6260

Merged
merged 3 commits into from
Oct 21, 2022
Merged

fix(oidc): Avoid storing Pac4j profile in cookie #6260

merged 3 commits into from
Oct 21, 2022

Conversation

jjoyce0510
Copy link
Collaborator

Summary

  • Previously we stored the entire pac4j OIDC profile in the user cookie, in encrypted form. This sometimes caused the OIDC cookie to grow too large, when attributes grew beyond a certain size. In this PR we remove that cookie, as it's not strictly required for subsequent requests.

Status
Ready for review

Checklist

  • The PR conforms to DataHub's Contributing Guideline (particularly Commit Message Format)
  • Links to related issues (if applicable)
  • Tests for the changes have been added/updated (if applicable)
  • Docs related to the changes have been added/updated (if applicable). If a new feature has been added a Usage Guide has been added for the same.
  • For any breaking change/potential downtime/deprecation/big changes an entry has been made in Updating DataHub

@github-actions github-actions bot added the product PR or Issue related to the DataHub UI/UX label Oct 21, 2022
@github-actions
Copy link

Unit Test Results (build & test)

597 tests  ±0   593 ✔️ ±0   12m 0s ⏱️ +16s
147 suites ±0       4 💤 ±0 
147 files   ±0       0 ±0 

Results for commit 342500e. ± Comparison against base commit 26b4a9e.

gabe-lyons
gabe-lyons reviewed Oct 21, 2022
View reviewed changes
datahub-frontend/app/controllers/SsoCallbackController.java
@@ -40,6 +40,7 @@ public SsoCallbackController(
@Nonnull AuthServiceClient authClient) {
_ssoManager = ssoManager;
setDefaultUrl("/"); // By default, redirects to Home Page on log in.
setSaveInSession(false);
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

what does this do?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please read the PR description

@jjoyce0510 jjoyce0510 merged commit 1bcc9df into datahub-project:master Oct 21, 2022
cccs-tom pushed a commit to CybercentreCanada/datahub that referenced this pull request Nov 18, 2022
@jjoyce0510 @cccs-tom
fix(oidc): Avoid storing Pac4j profile in cookie (datahub-project#6260)
9b64945
cccs-tom pushed a commit to CybercentreCanada/datahub that referenced this pull request Nov 18, 2022
@jjoyce0510 @cccs-tom
fix(oidc): Avoid storing Pac4j profile in cookie (datahub-project#6260)
70e4bbe
@jjoyce0510 jjoyce0510 mentioned this pull request Dec 8, 2022
Closed
gabe-lyons pushed a commit to gabe-lyons/datahub that referenced this pull request Jun 13, 2023
@jjoyce0510
fix(oidc): Avoid storing Pac4j profile in cookie (datahub-project#6260)…
d6fa87f 
… (datahub-project#966)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gabe-lyons gabe-lyons gabe-lyons approved these changes

Assignees
No one assigned
Labels
product PR or Issue related to the DataHub UI/UX
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@jjoyce0510 @gabe-lyons