On Fri, Jun 22, 2012 at 9:13 AM, Dimuthu Leelarathne <[email protected]>wrote:
> Hi all, > > Please see my comments inline. > > On Thu, Jun 21, 2012 at 9:21 PM, Afkham Azeez <[email protected]> wrote: > >> Has this been sorted out? >> >> On Mon, Jun 11, 2012 at 3:57 PM, Kathiravelu Pradeeban < >> [email protected]> wrote: >> >>> Also this tenant aware login is currently misleading. In early days of >>> stratos, when the tenant aware log in is enabled, we could see, @domainName >>> near the sign-in box. This ensured that we know that we are in the >>> tenant-aware mode, such that we will just have to give the >>> tenantLessUserName, providing the option to remove the tenant. >>> >>> However, currently that is not there. Either we should remove the tenant >>> aware log in, or bring the @domainName back to the sign-in. I prefer the >>> latter - however, in that case, the above reported issues with the >>> tenant-aware login should be fixed. >>> >>> To reproduce the issue. >>> Log in to a tenant, without tenant-aware log-in (i.e. by giving the >>> complete userName, like [email protected]). >>> Signout and try to login again. >>> Now it will be in the tenant aware log in mode. >>> https://10.150.3.109:9443/t/lolcat.lol/carbon/admin/login.jsp >>> >>> So to login as a different tenant user, we will have to manually delete >>> the url above, or if we are logging in as the user from the same tenant, we >>> have to make sure that we are giving the tenantLessUserName, as there is no >>> indication except the url. >>> >>> Thank you. >>> Regards, >>> Pradeeban. >>> >>> >>> On Mon, Jun 11, 2012 at 3:13 PM, Kathiravelu Pradeeban < >>> [email protected]> wrote: >>> >>>> Hi Dimuthu et al., >>>> I tried to log in to my tenant user [email protected], after signing out >>>> from the same tenant. Hence I am going throw the tenant aware login as >>>> below (giving user name as 'qqq'). >>>> >>>> Tenant aware login. >>>> From https://10.150.3.109:9443/t/lolcat.lol/carbon/admin/login.jsp >>>> >>>> I also tried to login without the tenant aware login (giving user name >>>> as '[email protected]') >>>> From https://10.150.3.109:9443/carbon/admin/login.jsp >>>> >>>> I can see a few differences in the urls, as below. Can you have a look? >>>> The given below are for AS, but this is not AS specific. I could see the >>>> same behavior in BAM. This can be reproduced constantly, in my locally >>>> built products. >>>> >>>> Check the differences in the urls, in both cases [1] and [2], for the >>>> tenant dashboard, service management page, and the user management page. >>>> There is no difference seen in the backend log for log in though. (To be >>>> clearer, I don't have a super tenant user named 'qqq'. It is just a tenant >>>> user [email protected].) >>>> >>>> [1] Tenant Aware login - (seems to be treating qqq as a super tenant >>>> user). >>>> [email protected] Signed-in as: *[email protected]:9443* >>>> >>>> https://10.150.3.109:9443/carbon/tenant-dashboard/index.jsp?loginStatus=true >>>> >>>> https://10.150.3.109:9443/carbon/service-mgt/index.jsp?region=region1&item=services_list_menu >>>> https://10.150.3.109:9443/carbon/user/user-mgt.jsp >>>> >>>> > There is a problem with the URL above, however the super tenant artifacts > and users are not visible to the qqq. We deprioratized tenant aware logins > in 1.5.2 branch due to other high priority issues and we never use it in a > SSO environment. I see two options here. One options is to get rid of the > tenant aware logins because it is very confusing. The other option would be > to change the URLs to tenant aware URLs when tenant login happens. I am +1 > for former proposal because I don't see the use case of tenant aware > logins. WDYT? > +1 to drop the tenant aware logins. I can see that inducing more confusions. Regards, Pradeeban. > > > thanks, > dimuthu > > > >> [2] Login without tenant-aware url. >>>> [email protected] Signed-in as: *[email protected]* >>>> >>>> https://10.150.3.109:9443/t/lolcat.lol/carbon/admin/index.jsp?loginStatus=true >>>> >>>> https://10.150.3.109:9443/t/lolcat.lol/carbon/service-mgt/index.jsp?region=region1&item=services_list_menu >>>> https://10.150.3.109:9443/t/lolcat.lol/carbon/user/user-mgt.jsp >>>> >>>> >>>> Logging in as 'admin', super tenant user. >>>> From https://10.150.3.109:9443/carbon/admin/login.jsp >>>> admin Signed in as: [email protected]:9443 >>>> https://10.150.3.109:9443/carbon/admin/index.jsp?loginStatus=true >>>> >>>> https://10.150.3.109:9443/carbon/service-mgt/index.jsp?region=region1&item=services_list_menu >>>> >>>> Can you have a look please? >>>> >>>> >>>> Thank you. >>>> Regards, >>>> Pradeeban. >>>> >>>> -- >>>> Kathiravelu Pradeeban. >>>> Cloud Technologies Team. >>>> WSO2 Inc. >>>> >>>> Blog: [Llovizna] http://kkpradeeban.blogspot.com/ >>>> M: +94 776 477 976 >>>> >>>> >>> >>> >>> -- >>> Kathiravelu Pradeeban. >>> Cloud Technologies Team. >>> WSO2 Inc. >>> >>> Blog: [Llovizna] http://kkpradeeban.blogspot.com/ >>> M: +94 776 477 976 >>> >>> >>> _______________________________________________ >>> Dev mailing list >>> [email protected] >>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>> >>> >> >> >> -- >> *Afkham Azeez* >> Director of Architecture; WSO2, Inc.; http://wso2.com >> Member; Apache Software Foundation; http://www.apache.org/ >> * <http://www.apache.org/>** >> email: **[email protected]* <[email protected]>* cell: +94 77 3320919 >> blog: **http://blog.afkham.org* <http://blog.afkham.org>* >> twitter: **http://twitter.com/afkham_azeez*<http://twitter.com/afkham_azeez> >> * >> linked-in: **http://lk.linkedin.com/in/afkhamazeez* >> * >> * >> *Lean . Enterprise . Middleware* >> >> > -- Kathiravelu Pradeeban. Cloud Technologies Team. WSO2 Inc. Blog: [Llovizna] http://kkpradeeban.blogspot.com/ M: +94 776 477 976
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
