HorizonMiddleware class causes excessive session rewrites and possible race condition resulting in logouts
Bug #1253829 reported by
Eric Peterson
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| OpenStack Dashboard (Horizon) |
Fix Released
|
High
|
Eric Peterson | ||
Bug Description
the horizon middleware is checking for timestamps and modifying last_activity for nearly every request.... this is bad in the case of ajax requests for a couple of reasons...
A) ajax requests can be an order or magnitude greater than regular requests.... making the session backend get thrashed.
II) if you try to switch project context from a page where you have several longer running ajax requests going on, it is possible the longer running ajax requests will update your session with older tokens. The user will seem to be logged out at this point, and really frustrated.
| description: | updated |
| Changed in horizon: | |
| status: | New → Triaged |
| importance: | Undecided → High |
| Changed in horizon: | |
| assignee: | nobody → Eric Peterson (ericpeterson-l) |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix proposed to horizon (master) | #1 |
| Changed in horizon: | |
| status: | Triaged → In Progress |
| Changed in horizon: | |
| status: | In Progress → Triaged |
| assignee: | Eric Peterson (ericpeterson-l) → nobody |
| Changed in horizon: | |
| assignee: | nobody → Eric Peterson (ericpeterson-l) |
| Changed in horizon: | |
| status: | Triaged → In Progress |
Revision history for this message
| OpenStack Infra (hudson-openstack) wrote Fix merged to horizon (master) | #2 |
| Changed in horizon: | |
| status: | In Progress → Fix Committed |
| Changed in horizon: | |
| milestone: | none → juno-1 |
| status: | Fix Committed → Fix Released |
| Changed in horizon: | |
| milestone: | juno-1 → 2014.2 |
To post a comment you must log in.
Fix proposed to branch: master
Review: https:/