diff options
| author | Hugo Brito <hugo.brito@windriver.com> | 2021-10-27 17:38:48 -0300 |
|---|---|---|
| committer | Akihiro Motoki <amotoki@gmail.com> | 2022-02-28 23:48:47 +0900 |
| commit | 5d6eefa498cf532bde6e9aed4ed278597a8289bc (patch) | |
| tree | 88c832a70f604bedff13116898b8df65941d9200 /releasenotes | |
| parent | a05b326e428ec0070867b052eb64c008cf46673d (diff) | |
| download | horizon-5d6eefa498cf532bde6e9aed4ed278597a8289bc.tar.gz | |
Create Horizon session control logic
The Multiple Simultaneous Logins Control is a feature designed
for securing Horizon dashboard sessions. The default Horizon
configuration allows the same user to login several times
(e.g. different browsers) simultaneously, that is, the same user
can have more than one active session for Horizon dashboard. When
there is the need to control the active sessions that one user can
have simultaneously, it will be possible to configure the Horizon dashboard
to disallow more than one active session per user. When multiple simultaneously
sessions are disabled, the most recent authenticated session will be considered
the valid one and the previous session will be invalidated.
The following manual tests encompass both simulteaneous session control
configuration: 'allow' and 'disconnect' and were verified with this code
change before submitting it:
Test Plan:
PASS: Verify that a user is able to login to Horizon dashboard (when
configuration is 'disconnect')
PASS: Verify that a user is able to start a second Horizon dashboard
session and the first session is finished (when configuration is
'disconnect')
Failure Path:
PASS: Verify that when a user fails to authenticate a second Horizon
dashboard session the first session stills active (when configuration is
'disconnect')
Regression:
PASS: Verify that a user is able to login to Horizon dashboard (when
configuration is default: 'allow')
PASS: Verify that a user is able to start multiple simultaneous Horizon
dashboard sessions (when configuration is default: 'allow')
Implements: blueprint handle-multiple-login-sessions-from-same-user-in-horizon
Signed-off-by: Hugo Brito <hugo.brito@windriver.com>
Co-authored-by: Thales Elero Cervi <thaleselero.cervi@windriver.com>
Change-Id: I8462aa98398dd8f27fe24d911c9bfaa7f303eb93
Diffstat (limited to 'releasenotes')
| -rw-r--r-- | releasenotes/notes/bp-handle-multiple-login-sessions-from-same-user-in-horizon-448baa6534a8a451.yaml | 11 |
1 files changed, 11 insertions, 0 deletions
diff --git a/releasenotes/notes/bp-handle-multiple-login-sessions-from-same-user-in-horizon-448baa6534a8a451.yaml b/releasenotes/notes/bp-handle-multiple-login-sessions-from-same-user-in-horizon-448baa6534a8a451.yaml new file mode 100644 index 000000000..513e51460 --- /dev/null +++ b/releasenotes/notes/bp-handle-multiple-login-sessions-from-same-user-in-horizon-448baa6534a8a451.yaml @@ -0,0 +1,11 @@ +features: + - | + [:blueprint:`handle-multiple-login-sessions-from-same-user-in-horizon`] + This blueprint allows operators to control if multiple simultaneous + dashboard sessions are allowed or not for a user. A new setting + ``SIMULTANEOUS_SESSIONS`` controls the behavior. The default behavior + allows multiple dashboard sessions for a user. The new setting allows + operators to configure horizon to disallow multiple sessions per user. + When multiple simultaneous sessions are disabled, the most recent + authenticated session will be considered as the valid one and + the previous session will be invalidated. |