rawlinp commented on pull request #1832: URL: https://github.com/apache/trafficcontrol/pull/1832#issuecomment-703928700
I believe this bug might've been experienced when upgrading to 3.1.x due to an issue with TO cookie generation -- basically TO was expiring the cookie earlier than the cookie headers actually said. This led TR to believe it still had a valid cookie, except TO was treating it as expired. This led to TR getting stuck on 401 responses without attempting to re-authenticate. However, this TO issue should be fixed in 4.0.x per https://github.com/apache/trafficcontrol/pull/4119. So now, TR will see that the cookie is expired then re-authenticate. However, this might not fix the issue of changing the TO secret, which I believe would essentially log everyone out and require everyone to log back in. In that case, this PR might be needed, but we should test that out. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
