1. Forum
  2. Usenet
  3. COMP.INFOSYSTEMS.WWW.SERV

  • User complain always get kicked out

    From Najmi Nasir@21:1/5 to All on Thu Feb 11 20:22:55 2016
    Hi

    I got a client running our application on Apache Webserver 2.4.9 under Redhat Linux OS platform.
    The application rely on Webserver to do authentication by using Form authentication.

    My issue is the client always complain they always get kicked out while using the application.
    In application we do have timeout for idle case but that has been turn off. So now we fully relied on Apache webserver time out.

    Inside httpd.conf, the TIMEOUT was set to 2900.
    Unfortunately sometimes the user got kicked out in few minute while using the system. Here I shared part of email sent by colleague who closely monitor the issue.

    The only issue the screen get kickout to login page while using the system.( Seems like the session cookie get expired). User will need to re-login and continue back the screen.



    This error was captured during my troubleshoot end of last year

    Error when screen kickout



    [Tue Nov 24 07:28:25.037264 2015] [authz_core:debug] [pid 14043:tid 1346517312] mod_authz_core.c(802): [client 10.47.113.109:49565] AH01626: authorization result of Require valid-user : denied (no authenticated user yet), referer: http://skbmsaga.mardi.
    gov.my/auth/logout.html?reason=timeout&url=http://skbmsaga.mardi.gov.my/as/connect/@MTI3LjAuMC4xOjY1OTQ=/wa/sua/46913397259328/1?t=

    [Tue Nov 24 07:30:32.965163 2015] [reqtimeout:info] [pid 14150:tid 1245821248] [client10.47.113.109:49626] AH01382: Request header read timeout





    I also simulate by removing the cookie from by browser and I do get similar error. By right, the cookie doesn't have end time and technically should remain until user close the App.



    If the user close the app via logout accordingly, below are the error msg



    [Tue Nov 24 23:35:25.964055 2015] [authz_core:debug] [pid 18725:tid 1354778944] mod_authz_core.c(802): [client10.36.86.62:56072] AH01626: authorization result of Require all granted: granted, referer: http://10.36.86.15/auth/logout.html?reason=exit&url=
    http://10.36.86.15/as/connect/wa/r/csf/menu?Arg=DB=mardilive

    [Tue Nov 24 23:35:25.964162 2015] [authz_core:debug] [pid 18725:tid 1354778944] mod_authz_core.c(802): [client10.36.86.62:56072] AH01626: authorization result of <RequireAny>: granted, referer: http://10.36.86.15/auth/logout.html?reason=exit&url=http://
    10.36.86.15/as/connect/wa/r/csf/menu?Arg=DB=mardilive

    Appreciate an expert help on this.

    --


    *Please consider the environment before printing this email.*

    DISCLAIMER: "This email and any files transmitted with it is confidential
    and is intended only for the use of the recipient(s) named above. If you
    are not the intended recipient, any review, retransmission, dissemination, distribution, printing, copying or use the information contained in this message or any part thereof in other manner is strictly prohibited. If you receive the message in error, please notify the sender by reply e-mail and discard all its contents.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)