cloudstack-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <>
Subject [jira] [Commented] (CLOUDSTACK-3426) UCS: Session cookie refresh must be supported.
Date Thu, 18 Jul 2013 23:36:48 GMT


ASF subversion and git services commented on CLOUDSTACK-3426:

Commit 1c8555eed187c0f291c2be2d5ae8111d44e19c96 in branch refs/heads/4.2 from [~frank.zhang]
[;h=1c8555e ]

UCS: Session cookie refresh must be supported.

add missing plugins/hypervisors/ucs/src/com/cloud/ucs/structure/

> UCS: Session cookie refresh must be supported.
> ----------------------------------------------
>                 Key: CLOUDSTACK-3426
>                 URL:
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: API, Management Server
>    Affects Versions: 4.2.0
>         Environment: Master with UCS and Baremetal
>            Reporter: Parth Jagirdar
>            Assignee: Amogh Vasekar
>            Priority: Blocker
> A stale cookie will raise authentication error and subsequent API calls will fail.
> We need a mechanism to refresh cookie based on recommendations below.
> While executing listUCSProfiles::
> { "listucsprofileresponse" : {"uuidList":[],"errorcode":530,"cserrorcode":9999,"errortext":"ucs
call failed:\nsubmitted doc:<configFindDnsByClassId cookie=\"1372458054/13f7441f-5f86-4668-911f-8cad3f9be693\"
classId=\"lsServer\" />\nresponse: <configFindDnsByClassId cookie=\"1372458054/13f7441f-5f86-4668-911f-8cad3f9be693\"
response=\"yes\" errorCode=\"552\" invocationResult=\"service-unavailable\" errorDescr=\"Authorization
required\"> </configFindDnsByClassId>\n"} }
> Here is the description from UCS API programming guide. (Full version here::
> Failed Requests
> The response to a failed request includes XML attributes for errorCode and errorDescr.
The following is an example of a response to a failed request:
> <configConfMo dn="fabric/server"
>           cookie="<real_cookie>"
>           response="yes"
>           errorCode="103"
>           invocationResult="unidentified-fail"
>           errorDescr="can't create; object already exists.">
> </configConfMo>
> From forums (
> And from here (
> We have an authentication cookie but this cookie will expire in two hours, the output
from the aaaLogin recommends a cookie refresh every 10 minutes. To refresh the authentication
cookie use the aaaRefresh method.
> So basically we need a mechanism for cookie refresh. Which we do not have for now.
> When I tried to add a new manager (so that cookie is fresh ??) ListProfiles succeeded.

This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see:

View raw message