Details
-
Bug
-
Resolution: Unresolved
-
Low
-
None
-
6.6.12, 6.15.7
-
None
-
1
-
Severity 3 - Minor
-
Description
Issue Summary
Regardless of what TTL has been set in seraph-config.xml for remember me token. The data in the Confluence remembermetoken table will be removed after the upgrade when users try to log in at the very first time.
Steps to Reproduce
- Install Confluence 6.6.12
- Create some users and set the remembermetoken created date (Big data) with the query below:
update remembermetoken set created = '1560230578' where id = '360453'
- Upgrade the Confluence to 6.15.7
- Check the remembermetoken table, data was surviving the upgrade process
- Login test users, data removed from the remembermetoken table accordingly
Test results:
Upgrade from Confluence 6.6.12 (default TTL is 1 year) to 6.15.3 (default TTL is 14 days)
| Users | Surviving the upgrade | Token is not removed from the first login |
|---|---|---|
| User 1 |  |
 |
| User 2 | |
|
| User 3 | |
|
| admin | |
|
Expected Results
The token should not be removed from the database unless they are expired after the upgrade
Actual Results
The token in database been removed and users will have to login again
Note
It seems only the token that created on the day of the upgrade was not removed.
Workaround
Currently there is no known workaround for this behavior. A workaround will be added here when available