Handle logout for the special kube:admin user #1173

spadgett · 2019-02-06T19:20:55Z

Fixes https://bugzilla.redhat.com/show_bug.cgi?id=1670693
Fixes https://jira.coreos.com/browse/CONSOLE-1083

spadgett · 2019-02-06T21:05:05Z

/retest

spadgett · 2019-02-06T23:56:21Z

ERROR in ./node_modules/patternfly-react/dist/esm/components/Dropdown/Dropdown.js
Module build failed: Error: ENOMEM: not enough memory, read

/retest

spadgett · 2019-02-07T01:03:26Z

/retest

spadgett · 2019-02-07T16:02:53Z

/retest

benjaminapetersen · 2019-02-07T18:53:31Z

auth/auth_openshift.go

 		return oauth2.Endpoint{}, nil, err
 	}

+	kubeAdminLogoutURL := proxy.SingleJoiningSlash(metadata.Issuer, "/logout")


kind of curious why we have this func vs just using filepath.Join() but I'm sure thats history.

I think it might normalize http:// to http:/ in the URL

package main import ( "fmt" "path/filepath" ) func main() { fmt.Println(filepath.Join("http://example.com/", "/logout")) } --- http:/example.com/logout Program exited.

benjaminapetersen · 2019-02-07T19:00:14Z

frontend/public/module/auth.js

+    // First POST to the console server to clear the console session cookie.
+    coFetch(window.SERVER_FLAGS.logoutURL, { method: 'POST' })
+      // eslint-disable-next-line no-console
+      .catch(e => console.error('Error logging out', e))


We are good just logging this error, no handling?

If the access token is deleted in the previous request, it's actually OK if this one fails since the console cookie will no longer have a valid token anyway. We might even be able to skip this step.

FWIW, this matches what we do in logout()

https://github.com/openshift/console/blob/master/frontend/public/module/auth.js#L55-L57

There is an edge case where both delete token and logout fail where it could be a problem, though. I guess that could happen if you were disconnected from the internet or the console pod goes away.

spadgett · 2019-02-07T23:35:14Z

/retest

spadgett · 2019-02-08T00:59:23Z

/retest

spadgett · 2019-02-08T02:44:14Z

flake https://jira.coreos.com/browse/CONSOLE-1266

/retest

spadgett · 2019-02-08T13:35:41Z

/retest

spadgett · 2019-02-08T14:09:44Z

/retest

spadgett · 2019-02-08T14:58:39Z

install failed

/retest

spadgett · 2019-02-08T16:38:36Z

/retest

spadgett · 2019-02-08T17:41:24Z

/retest

benjaminapetersen · 2019-02-08T18:46:46Z

/lgtm

spadgett · 2019-02-08T21:51:06Z

/retest

spadgett · 2019-02-08T23:29:26Z

/retest

spadgett · 2019-02-09T02:37:14Z

/retest

spadgett · 2019-02-09T12:11:20Z

/retest

spadgett · 2019-02-09T13:54:45Z

/retest

spadgett · 2019-02-09T15:10:39Z

/retest

spadgett · 2019-02-09T16:36:12Z

/retest

spadgett · 2019-02-09T21:12:46Z

/retest

spadgett · 2019-02-09T22:25:32Z

/retest

spadgett · 2019-02-10T00:00:55Z

/retest

spadgett · 2019-02-10T03:29:20Z

/retest

spadgett · 2019-02-10T12:43:55Z

/retest

jhadvig · 2019-02-10T14:39:06Z

/retest

spadgett · 2019-02-10T16:11:29Z

/retest

Handle logout for the special kube:admin user

edd3f7a

openshift-ci-robot assigned benjaminapetersen and enj Feb 6, 2019

openshift-ci-robot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Feb 6, 2019

benjaminapetersen reviewed Feb 7, 2019

View reviewed changes

openshift-ci-robot added the lgtm Indicates that a PR is ready to be merged. label Feb 8, 2019

openshift-merge-robot merged commit e267fcf into openshift:master Feb 10, 2019

spadgett deleted the logout-kubeadmin branch February 10, 2019 17:17

Handle logout for the special kube:admin user #1173

Handle logout for the special kube:admin user #1173

Uh oh!

Conversation

spadgett commented Feb 6, 2019

Uh oh!

spadgett commented Feb 6, 2019

Uh oh!

spadgett commented Feb 6, 2019

Uh oh!

spadgett commented Feb 7, 2019

Uh oh!

spadgett commented Feb 7, 2019

Uh oh!

benjaminapetersen Feb 7, 2019

Choose a reason for hiding this comment

Uh oh!

spadgett Feb 7, 2019 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

spadgett Feb 7, 2019

Choose a reason for hiding this comment

Uh oh!

benjaminapetersen Feb 7, 2019

Choose a reason for hiding this comment

Uh oh!

spadgett Feb 7, 2019

Choose a reason for hiding this comment

Uh oh!

spadgett commented Feb 7, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

benjaminapetersen commented Feb 8, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

spadgett commented Feb 8, 2019

Uh oh!

spadgett commented Feb 9, 2019

Uh oh!

spadgett commented Feb 9, 2019

Uh oh!

spadgett commented Feb 9, 2019

Uh oh!

spadgett commented Feb 9, 2019

Uh oh!

spadgett commented Feb 9, 2019

Uh oh!

spadgett commented Feb 9, 2019

Uh oh!

spadgett commented Feb 9, 2019

Uh oh!

spadgett commented Feb 10, 2019

Uh oh!

spadgett commented Feb 10, 2019

Uh oh!

spadgett commented Feb 10, 2019

Uh oh!

jhadvig commented Feb 10, 2019

Uh oh!

spadgett commented Feb 10, 2019

Uh oh!

Reviewers

Assignees

Labels

Projects

spadgett Feb 7, 2019 •

edited

Loading