You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
Opening links in the vault ui in a new tab causes session state to be lost and redirects the user back to login. The old tab remains functional, but the new tab is logged out.
I noticed in the network console the new tab had 403 errors for: https://$VAULT_HOST/v1/sys/internal/ui/resultant-acl
And the new tab Session Storage state looks like this:
vault:ui-tutorial-state="idle"
It looks like the login session state is getting destroyed somehow on opening a new tab. Another interesting thing is that both the new tab and old tab had the same data in Local Storage, which both have a json vault-token, but Session Storage was changed in the new tabs and were missing the vault-token value.
To Reproduce
Steps to reproduce the behavior:
Login to vault
Open any link in a new tab
You'll be redirected to the login page
Check console network tab to see 403 error
Expected behavior
Opening hyper links in a new tab should work and the user remain logged in
Describe the bug
Opening links in the vault ui in a new tab causes session state to be lost and redirects the user back to login. The old tab remains functional, but the new tab is logged out.
I noticed in the network console the new tab had 403 errors for:
https://$VAULT_HOST/v1/sys/internal/ui/resultant-acl
Server logs showed two errors:
I started looking at session state for both tabs and noticed in the old tab the Session Storage state looked like:
And the new tab Session Storage state looks like this:
It looks like the login session state is getting destroyed somehow on opening a new tab. Another interesting thing is that both the new tab and old tab had the same data in Local Storage, which both have a json
vault-token
, but Session Storage was changed in the new tabs and were missing thevault-token
value.To Reproduce
Steps to reproduce the behavior:
Expected behavior
Opening hyper links in a new tab should work and the user remain logged in
Environment:
1.10.3
Vault v1.10.3 (af866591ee60485f05d6e32dd63dde93df686dfb)
vault:1.10.3
Vault server configuration file(s):
Additional context
The text was updated successfully, but these errors were encountered: