|
If you were logged in you would be able to see more operations.
|
|
|
|
Environment:
|
forums.sun.com / identity
|
|
http://forums.sun.com/thread.jspa?messageID=10733557
Certain users are having trouble authenticating onto the forums site, but seem to be able to gain access via a backdoor route. Not compromised, just an alternative approach.
Users see the "authentication failed" screen every so often.
|
|
Description
|
http://forums.sun.com/thread.jspa?messageID=10733557
Certain users are having trouble authenticating onto the forums site, but seem to be able to gain access via a backdoor route. Not compromised, just an alternative approach.
Users see the "authentication failed" screen every so often. |
Show » |
|
Bug
Resolved
Minor
Forums authentication issues
Login and logout onto forums multiple times using various identities.
Success: It always works
Failure: It sometimes does not show you logged in.
Some juicy details: The login system has been a source of multiple stability issues a while back. We authenticate with the external system that used to be poor performant, hanging up many a threads on our end, potentially crashing the server eventually. So,I did some changes to our end to automatically time out after certain time if the login system does not respond, so the users won't be able to login, but atleast can browse the forums without choking the system.
This is where there were some holes that I saw when issues were being reported recently. I have put in some changes to this code now that should ideally let all users logged in if the login system is working fine.