Uploaded image for project: 'Bamboo Data Center'
  1. Bamboo Data Center
  2. BAM-20006

As an admin, I would like to limit the number of user sessions to X session per account

XMLWordPrintable

    • 0
    • 1

    • Our product teams collect and evaluate feedback from a number of different sources. To learn more about how we use customer feedback in the planning process, check out our new feature policy.

      Issue

      As an administrator I would like to enforce user activity as this will help prevent people from sharing login names / credentials, restricting their access to the application by X active sessions. This is a security concern that would limit unauthorized access to a user account, and limit users to specific simultaneous sessions.

      Example:
      • User would like the ability to lock out accounts from multiple remote machines
      • Logging in as a user on a browser should expire all existing sessions for that user

      Resources

            [BAM-20006] As an admin, I would like to limit the number of user sessions to X session per account

            Martyna Wojtas (Inactive) made changes -
            Resolution New: Timed out [ 10 ]
            Status Original: Gathering Interest [ 11772 ] New: Closed [ 6 ]
            Martyna Wojtas (Inactive) made changes -
            Labels Original: pse-request New: bamboo-bugs-grooming pse-request
            Katherine Yabut made changes -
            Workflow Original: JAC Suggestion Workflow [ 3017540 ] New: JAC Suggestion Workflow 3 [ 3602871 ]
            Owen made changes -
            Workflow Original: Confluence Workflow - Public Facing v4 [ 2748112 ] New: JAC Suggestion Workflow [ 3017540 ]
            SET Analytics Bot made changes -
            Support reference count New: 1
            Krystian Brazulewicz made changes -
            UIS New: 0
            Rafael Sperafico (Inactive) made changes -
            Labels New: pse-request
            Rafael Sperafico (Inactive) made changes -
            Component/s New: Security [ 11226 ]
            Rafael Sperafico (Inactive) made changes -
            Description Original: h3. Issue
            As an administrator I would like to enforce user activity as this will help prevent people from sharing login names / credentials, restricting their access to the application by X active sessions.

            h3. Suggestion
            * https://docs.spring.io/spring-security/site/docs/3.0.x/reference/session-mgmt.html
            * http://www.baeldung.com/spring-security-session

            		New: h3. Issue

            As an administrator I would like to enforce user activity as this will help prevent people from sharing login names / credentials, restricting their access to the application by X active sessions. This is a security concern that would limit unauthorized access to a user account, and limit users to specific simultaneous sessions.
            h5. Example:
             * User would like the ability to lock out accounts from multiple remote machines
             * Logging in as a user on a browser should expire all existing sessions for that user

            h3. Resources
             * [https://docs.spring.io/spring-security/site/docs/3.0.x/reference/session-mgmt.html]
             * [http://www.baeldung.com/spring-security-session]
            Rafael Sperafico (Inactive) created issue -

              Unassigned Unassigned
              rsperafico Rafael Sperafico (Inactive)
              Votes:
              2 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: