Hi Kelly, That's an intriguing possibility, because the email addresses (which are our user names) were both in "firstname.lastname" format, and the first names of the two users were "cassandra" and "sandrine", with the letters "sandr" in common between them.
It would be weird if that was the reason. Regards, Ganesh On Thursday, 7 March 2019 03:39:27 UTC+11, Kelly Geng wrote: > > Hi Ganesh, > > Are the users' login IDs similar with each other in your case? We are > seeing similar behaviors intermittently with two users having very similar > login IDs, for example brownljb and brownll5, which shared the fist 6 > letters. > > Thanks, > Kelly > > On Tue, Mar 5, 2019 at 10:01 PM Ganesh Prasad <[email protected] > <javascript:>> wrote: > >> Hi all, >> >> This is a serious issue, and I think it may have something to do with >> caching. >> >> I have a user (say User1), who logs into CAS using delegated >> authentication against an external IdP using pac4j. >> >> I have another user (say User2), who belongs to a different organisation, >> and who logs into CAS using a local LDAP username and password. >> >> Today, User2 logged in and saw User1's name displayed on the screen. I >> assume that the rest of the profile (based on the SAML token) was also that >> of User1. Needless to say, this is a serious issue. >> >> The problem could not be reproduced, but we have screenshots that prove >> that User2 did see User1's name on screen. They had no idea such a user >> even existed until they saw it on screen. >> >> Any ideas why this could be happening? Is there a simple setting to turn >> off caching somewhere? I'm hoping it's something as simple as that. >> >> Regards, >> Ganesh >> >> -- >> - Website: https://apereo.github.io/cas >> - Gitter Chatroom: https://gitter.im/apereo/cas >> - List Guidelines: https://goo.gl/1VRrw7 >> - Contributions: https://goo.gl/mh7qDG >> --- >> You received this message because you are subscribed to the Google Groups >> "CAS Community" group. >> To unsubscribe from this group and stop receiving emails from it, send an >> email to [email protected] <javascript:>. >> To view this discussion on the web visit >> https://groups.google.com/a/apereo.org/d/msgid/cas-user/fdf9e9ca-8ca0-4853-883f-32af4de4d019%40apereo.org >> >> <https://groups.google.com/a/apereo.org/d/msgid/cas-user/fdf9e9ca-8ca0-4853-883f-32af4de4d019%40apereo.org?utm_medium=email&utm_source=footer> >> . >> > > > -- > Kelly > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/4864d541-9724-4428-afa8-38ff074f5732%40apereo.org.
