iChain inconsistencies

i don’t know, maybe the subject should be bugzilla bug, i can’t tell…

follow these steps to see the problem

-log out from the forum
-check that this page https://bugzilla.novell.com/ does not know who
you are, if it does click on “Log out”

ok, now you approach the situation as i do (not logged in with Novell
or the openSUSE fourms) and:

  1. go to http://forums.opensuse.org/ and log in…now, according to
    what i thought i understood about iChain both Novell and openSUSE has
    me identified, so

  2. go to https://bugzilla.novell.com/ and click on “Enter a bug” and
    up pops a Novell page requiring me to log in

why?


DenverD
CAVEAT: http://is.gd/bpoMD [posted via NNTP w/openSUSE 10.3]

A guess:

As I recall the ‘normal’ Novell/openSUSE cookie expires (because of stricter security policies) in a time shorter than the special forums’ Cookie.

So I would rate it **consistent **if the cookie with the stricter security policies would allow the access to a project with not so strict security policies
but not
the other way round.

If the cookie with not so strict security policies (longer time until expiring) would allow the access to a project with the stricter security policies:
that behavior would undermine the stricter security policies, or not?

But it is just a guess.

Regards
pistazienfresser

On Tue, 24 Aug 2010 19:36:02 +0000, pistazienfresser wrote:

> But it is just a guess.

It’s a pretty good guess, as those things go. Pretty much outlines my
understanding completely.

Jim

Jim Henderson
openSUSE Forums Administrator
Forum Use Terms & Conditions at http://tinyurl.com/openSUSE-T-C