Hi Azeez, On Fri, Jun 22, 2012 at 9:32 AM, Afkham Azeez <[email protected]> wrote:
> Who is going to make this change? i.e. dropping tenant aware login. > > One of us in platform team will do it for Beta take 3 smoke tests. Builds are ready for beta take2. I created JIRA to keep track. https://wso2.org/jira/browse/CARBON-13504 thanks, dimuthu > > On Fri, Jun 22, 2012 at 9:30 AM, Kathiravelu Pradeeban <[email protected] > > wrote: > >> >> >> On Fri, Jun 22, 2012 at 9:13 AM, Dimuthu Leelarathne >> <[email protected]>wrote: >> >>> Hi all, >>> >>> Please see my comments inline. >>> >>> On Thu, Jun 21, 2012 at 9:21 PM, Afkham Azeez <[email protected]> wrote: >>> >>>> Has this been sorted out? >>>> >>>> On Mon, Jun 11, 2012 at 3:57 PM, Kathiravelu Pradeeban < >>>> [email protected]> wrote: >>>> >>>>> Also this tenant aware login is currently misleading. In early days of >>>>> stratos, when the tenant aware log in is enabled, we could see, >>>>> @domainName >>>>> near the sign-in box. This ensured that we know that we are in the >>>>> tenant-aware mode, such that we will just have to give the >>>>> tenantLessUserName, providing the option to remove the tenant. >>>>> >>>>> However, currently that is not there. Either we should remove the >>>>> tenant aware log in, or bring the @domainName back to the sign-in. I >>>>> prefer >>>>> the latter - however, in that case, the above reported issues with the >>>>> tenant-aware login should be fixed. >>>>> >>>>> To reproduce the issue. >>>>> Log in to a tenant, without tenant-aware log-in (i.e. by giving the >>>>> complete userName, like [email protected]). >>>>> Signout and try to login again. >>>>> Now it will be in the tenant aware log in mode. >>>>> https://10.150.3.109:9443/t/lolcat.lol/carbon/admin/login.jsp >>>>> >>>>> So to login as a different tenant user, we will have to manually >>>>> delete the url above, or if we are logging in as the user from the same >>>>> tenant, we have to make sure that we are giving the tenantLessUserName, as >>>>> there is no indication except the url. >>>>> >>>>> Thank you. >>>>> Regards, >>>>> Pradeeban. >>>>> >>>>> >>>>> On Mon, Jun 11, 2012 at 3:13 PM, Kathiravelu Pradeeban < >>>>> [email protected]> wrote: >>>>> >>>>>> Hi Dimuthu et al., >>>>>> I tried to log in to my tenant user [email protected], after signing >>>>>> out from the same tenant. Hence I am going throw the tenant aware login >>>>>> as >>>>>> below (giving user name as 'qqq'). >>>>>> >>>>>> Tenant aware login. >>>>>> From https://10.150.3.109:9443/t/lolcat.lol/carbon/admin/login.jsp >>>>>> >>>>>> I also tried to login without the tenant aware login (giving user >>>>>> name as '[email protected]') >>>>>> From https://10.150.3.109:9443/carbon/admin/login.jsp >>>>>> >>>>>> I can see a few differences in the urls, as below. Can you have a >>>>>> look? The given below are for AS, but this is not AS specific. I could >>>>>> see >>>>>> the same behavior in BAM. This can be reproduced constantly, in my >>>>>> locally >>>>>> built products. >>>>>> >>>>>> Check the differences in the urls, in both cases [1] and [2], for the >>>>>> tenant dashboard, service management page, and the user management page. >>>>>> There is no difference seen in the backend log for log in though. (To be >>>>>> clearer, I don't have a super tenant user named 'qqq'. It is just a >>>>>> tenant >>>>>> user [email protected].) >>>>>> >>>>>> [1] Tenant Aware login - (seems to be treating qqq as a super tenant >>>>>> user). >>>>>> [email protected] Signed-in as: *[email protected]:9443* >>>>>> >>>>>> https://10.150.3.109:9443/carbon/tenant-dashboard/index.jsp?loginStatus=true >>>>>> >>>>>> https://10.150.3.109:9443/carbon/service-mgt/index.jsp?region=region1&item=services_list_menu >>>>>> https://10.150.3.109:9443/carbon/user/user-mgt.jsp >>>>>> >>>>>> >>> There is a problem with the URL above, however the super tenant >>> artifacts and users are not visible to the qqq. We deprioratized tenant >>> aware logins in 1.5.2 branch due to other high priority issues and we never >>> use it in a SSO environment. I see two options here. One options is to get >>> rid of the tenant aware logins because it is very confusing. The other >>> option would be to change the URLs to tenant aware URLs when tenant login >>> happens. I am +1 for former proposal because I don't see the use case of >>> tenant aware logins. WDYT? >>> >> >> +1 to drop the tenant aware logins. I can see that inducing more >> confusions. >> >> Regards, >> Pradeeban. >> >> >>> >>> >>> thanks, >>> dimuthu >>> >>> >>> >>>> [2] Login without tenant-aware url. >>>>>> [email protected] Signed-in as: *[email protected]* >>>>>> >>>>>> https://10.150.3.109:9443/t/lolcat.lol/carbon/admin/index.jsp?loginStatus=true >>>>>> >>>>>> https://10.150.3.109:9443/t/lolcat.lol/carbon/service-mgt/index.jsp?region=region1&item=services_list_menu >>>>>> https://10.150.3.109:9443/t/lolcat.lol/carbon/user/user-mgt.jsp >>>>>> >>>>>> >>>>>> Logging in as 'admin', super tenant user. >>>>>> From https://10.150.3.109:9443/carbon/admin/login.jsp >>>>>> admin Signed in as: [email protected]:9443 >>>>>> https://10.150.3.109:9443/carbon/admin/index.jsp?loginStatus=true >>>>>> >>>>>> https://10.150.3.109:9443/carbon/service-mgt/index.jsp?region=region1&item=services_list_menu >>>>>> >>>>>> Can you have a look please? >>>>>> >>>>>> >>>>>> Thank you. >>>>>> Regards, >>>>>> Pradeeban. >>>>>> >>>>>> -- >>>>>> Kathiravelu Pradeeban. >>>>>> Cloud Technologies Team. >>>>>> WSO2 Inc. >>>>>> >>>>>> Blog: [Llovizna] http://kkpradeeban.blogspot.com/ >>>>>> M: +94 776 477 976 >>>>>> >>>>>> >>>>> >>>>> >>>>> -- >>>>> Kathiravelu Pradeeban. >>>>> Cloud Technologies Team. >>>>> WSO2 Inc. >>>>> >>>>> Blog: [Llovizna] http://kkpradeeban.blogspot.com/ >>>>> M: +94 776 477 976 >>>>> >>>>> >>>>> _______________________________________________ >>>>> Dev mailing list >>>>> [email protected] >>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>> >>>>> >>>> >>>> >>>> -- >>>> *Afkham Azeez* >>>> Director of Architecture; WSO2, Inc.; http://wso2.com >>>> Member; Apache Software Foundation; http://www.apache.org/ >>>> * <http://www.apache.org/>** >>>> email: **[email protected]* <[email protected]>* cell: +94 77 3320919 >>>> blog: **http://blog.afkham.org* <http://blog.afkham.org>* >>>> twitter: >>>> **http://twitter.com/afkham_azeez*<http://twitter.com/afkham_azeez> >>>> * >>>> linked-in: **http://lk.linkedin.com/in/afkhamazeez* >>>> * >>>> * >>>> *Lean . Enterprise . Middleware* >>>> >>>> >>> >> >> >> -- >> Kathiravelu Pradeeban. >> Cloud Technologies Team. >> WSO2 Inc. >> >> Blog: [Llovizna] http://kkpradeeban.blogspot.com/ >> M: +94 776 477 976 >> >> > > > -- > *Afkham Azeez* > Director of Architecture; WSO2, Inc.; http://wso2.com > Member; Apache Software Foundation; http://www.apache.org/ > * <http://www.apache.org/>** > email: **[email protected]* <[email protected]>* cell: +94 77 3320919 > blog: **http://blog.afkham.org* <http://blog.afkham.org>* > twitter: **http://twitter.com/afkham_azeez*<http://twitter.com/afkham_azeez> > * > linked-in: **http://lk.linkedin.com/in/afkhamazeez* > * > * > *Lean . Enterprise . Middleware* > >
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
