[
https://issues.apache.org/jira/browse/RANGER-3388?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17417652#comment-17417652
]
Nitin Galave commented on RANGER-3388:
--------------------------------------
Committed to apache
[master|https://github.com/apache/ranger/commit/321435f45ee6ea2090c5339d1eda6ed5b11693a1]
branch.
Committed to
[ranger-2.2|https://github.com/apache/ranger/commit/afb4d982cdcf4203db046f556a829ded75151c5c]
branch.
> Session Inactivity Timeout: Ranger UI part.
> -------------------------------------------
>
> Key: RANGER-3388
> URL: https://issues.apache.org/jira/browse/RANGER-3388
> Project: Ranger
> Issue Type: Improvement
> Components: Ranger
> Reporter: Nitin Galave
> Assignee: Nitin Galave
> Priority: Major
> Attachments: 0001-RANGER-3388.patch
>
>
> *Background*
> Ranger users who log in via one of the supported authentication flavors stay
> logged in until they choose to log out.
> This is a security hole in the scenario where the user has logged in and has
> left their desk. The inactivity does not result in early log out.
> This implementation addresses that problem.
> *Scenarios*
> * Login to single session.
> * Login to multiple tabs.
> * Login to multiple services each having its own inactivity detection and
> logout implementation.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
