[TRANSLATE-2889] logoutOnWindowClose does not work - translate5 JIRA issue tracker

Type: Bug
Resolution: Fixed
Fix Version/s: translate5 - 5.6.5
Affects Version/s: None
Component/s: API

Urgency:
Critical
ChangeLog Description:
If just closing the application window the user is now logged out correctly (if configured).
Checklist:

Empty

show more show less

Logout when leaving translate5 not via logout button doesn't work.

Cleaning the cookie on beforeunload is needed to not interpret 302 redirects' HTML as JSON

But this causes sendBeacon to not send it even when it is deleted only after the sendBeacon call

So the /logout API cannot destroy the session, bc it has no sessionId.

We must in this case send the sessionID as request param because sendBacon allows no header customization. Easiest is as GET parameter, potentially appearing in auth logs. POST is also possible, lookup the sendBeacon API for it.

Then in the logoutHandler construct the sessionToDestroy from the request param instead of the zfExtended header.

relates to

TRANSLATE-2856 Login/Logout issues

Done

TRANSLATE-1586 Close session on browser window close

Done

Assignee:: Thomas Lauria

Reporter:: Christoph Lamparter (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 07/Mar/2022 02:34

Updated:: 23/Apr/2024 05:09

Resolved:: 07/Mar/2022 03:57

Details

Description

Attachments

Issue Links

Activity

People

Dates