Details
-
Bug
-
Resolution: Fixed
-
Medium
-
4.3.1
-
None
-
5.1
-
Description
When a user changes their password, the seraph cookie is still valid.
To avoid this, all entries for the changed user in the table remembermetoken should be removed.
Attachments
Issue Links
- is related to
-
CONFSERVER-26426 Session ID and remember me cookie should expire when LDAP user password is changed
- Closed