L3 Support
  1. L3 Support
  2. LS-1027

NEP Logout via ADFS – Session Not Terminating Properly (ADFS URL Error)

        Details

        • Type: Bug Bug
        • Status: Ready for QA Ready for QA (View Workflow)
        • Priority: Normal Normal
        • Resolution: Unresolved
        • Component/s: NEP
        • Labels:
          None Labels
        • Customer:
          Airtel India
        • Complexity:
          Very High
        • Product:
          NEP

          Description

          Users are facing errors while logging out of NEP through ADFS. The logout process does not terminate the session properly, leading to session persistence issues.

          This may also be contributing to the “User already authenticated” issue.

          Steps to Reproduce:

          Login to NEP via ADFS
          Click on Logout
          Observe behavior

          Actual Result:

          Error during logout (ADFS URL issue)
          Session not terminated

          Expected Result:

          Successful logout without errors
          Complete session termination (both NEP + ADFS)

          Impact:

          Sessions remain active
          Users face login issues later
          Security concern (session persistence)

            Activity

            Ascending order - Click to sort in descending order
            Sanju Yadav made changes -
            Field Original Value New Value
            Gantt Options Milestone (set to milestone: having a due date but zero effort)
            Planned Start 2026-03-25 24:00 (milestone: set planned start date to due date)
            Planned End 2026-03-25 24:00 (milestone: set planned end date to due date)
            Khaled Khalil made changes -
            Assignee Khaled Khalil [ kkhalil ] Omar Kamalddine [ okamalddine ]
            Omar Kamalddine made changes -
            Status Open Bug [ 10108 ] Dev Scheduled [ 10014 ]
            Omar Kamalddine made changes -
            Status Dev Scheduled [ 10014 ] Implementation in progress [ 10016 ]
            Hide
            Permalink
            Omar Kamalddine added a comment -

            Fix: AppUserChecker.check() now evicts the stale cache entry instead of throwing on re-login. Also hardened adfsLogin() to swallow logout errors before calling validateToken.

            Show
            Omar Kamalddine added a comment - Fix: AppUserChecker.check() now evicts the stale cache entry instead of throwing on re-login. Also hardened adfsLogin() to swallow logout errors before calling validateToken.
            Omar Kamalddine made changes -
            Status Implementation in progress [ 10016 ] To Be Released [ 10400 ]
            Hide
            Permalink
            Omar Kamalddine added a comment -

            Root cause: Spring Security user cache was not evicted on SSO logout when the authentication field was null/stale after Vaadin session reset, causing AppUserChecker to block re-login with MultipleAuthenticationException.
            Fix: AppUserChecker.check() now evicts the stale cache entry instead of throwing on re-login. Also hardened adfsLogin() to swallow logout errors before calling validateToken.

            Show
            Omar Kamalddine added a comment - Root cause: Spring Security user cache was not evicted on SSO logout when the authentication field was null/stale after Vaadin session reset, causing AppUserChecker to block re-login with MultipleAuthenticationException. Fix: AppUserChecker.check() now evicts the stale cache entry instead of throwing on re-login. Also hardened adfsLogin() to swallow logout errors before calling validateToken.
            Khaled Khalil made changes -
            Status To Be Released [ 10400 ] Ready for QA [ 10023 ]
            Assignee Omar Kamalddine [ okamalddine ] Sanju Yadav [ syadav ]
            Transition Time In Source Status Execution Times Last Executer Last Execution Date
            Open Bug Open Bug Dev Scheduled Dev Scheduled
            		5d 17h 12m 1 Omar Kamalddine 31/Mar/26 4:11 AM
            Dev Scheduled Dev Scheduled Implementation in progress Implementation in progress
            		6s 1 Omar Kamalddine 31/Mar/26 4:11 AM
            Implementation in progress Implementation in progress To Be Released To Be Released
            		3d 9h 26m 1 Omar Kamalddine 03/Apr/26 1:37 PM
            To Be Released To Be Released Ready for QA Ready for QA
            		3m 9s 1 Khaled Khalil 03/Apr/26 1:40 PM
            Subversion JIRA

            Links Hierarchy

            		  Documentation

            Invalid license: EXPIRED

            Cancel

              People

              • Assignee:
                Sanju Yadav
                Reporter:
                Sanju Yadav
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Due:
                  Created:
                  Updated:
                  Planned Start:
                  Planned End:

                  Drag and Drop