dataCobra opened a new issue, #9848:
URL: https://github.com/apache/cloudstack/issues/9848
##### ISSUE TYPE
* Bug Report
##### COMPONENT NAME
~~~
LOGIN, MANAGEMENT
~~~
##### CLOUDSTACK VERSION
~~~
4.19.1.2
~~~
##### SUMMARY
After the update to version `4.19.1.2`. Users that don't have 2FA enabled
are unable to login and get a `401 UNAUTHORIZED` answer from the system. In the
logs I can see that an error `JSESSIONID is invalid.` gets logged multiple
times.
__We have no special login methods (like OAuth, SAML) enabled and 2FA is
also not mandatory but enabled.__
This was tested with different clients with and without cache. All clients
produced the same error.
##### STEPS TO REPRODUCE
~~~
1. Update to version 4.19.1.2
2. Try to login with a non 2FA user
3. Get 401 UNAUTHORIZED error
4. Downgrade to 4.19.1.1
5. Try to login with a non 2FA user
6. Login works fine
~~~
<!-- You can also paste gist.github.com links for larger files -->
##### EXPECTED RESULTS
<!-- What did you expect to happen when running the steps above? -->
~~~
Login with non 2FA users does work.
~~~
##### ACTUAL RESULTS
~~~
Login with non 2FA users doesn't work. (401 UNAUTHORIZED)
~~~
---
We've downgraded to version 4.19.1.1 for now.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
