Uploaded image for project: 'Hippo CMS'
  1. Hippo CMS
  2. CMS-5657

When a user tries to log in with an invalid password while the same user is already logged in with another session that session is invalidated irrespective of the fact access was denied

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: 2.18.06, 2.20.04, 2.21.06
    • Fix Version/s: 2.20.05, 2.21.07, Unreleased - EOL
    • Component/s: None
    • Labels:
      None
    • Similar issues:

      Description

      Usually when a user logs into the CMS while that user already has an active session on another browser, the latter is logged out. This is expected behavior. Now it seems that the latter session is invalidated even when the former login attempt was unsuccessful due to an invalid password.

        Attachments

          Activity

            People

            • Assignee:
              svoortman Simon Voortman (Inactive)
              Reporter:
              uhommes Unico Hommes (Inactive)
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: