Closed Bug 426394 Opened 16 years ago Closed 16 years ago

Mozilla does not remember chosen certificate

Categories

(Core :: Security: PSM, defect)

Product:
Core
Component:
Security: PSM
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 149673

People

(Reporter: xypron.debian, Assigned: KaiE)

References

(
URL
)

Details

User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.8.1.13) Gecko/20080313 SeaMonkey/1.1.9
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.8.1.13) Gecko/20080313 SeaMonkey/1.1.9

Some servers (e.g. http://service.sap.com) use certificates for global sign on. Each individual request is served by a different server. New in version 1.1.9 mozilla shows a dialogue to select which certificate shall be exposed to which server. Unfortunately Mozilla does not remember which certificate is used for which server if in the meanwhile another server has responded to a request, e.g.:

Server 1 asks for a certificate
User chooses a certificate
Server 2 asks for the same certificate
User chooses a certificate
Server 1 asks for a certificate
User again is unnecessarily asked again to choose a certificate.

Mozilla should at least remember which certificate is used for which server until the main window is closed.

If it safe to do so Mozilla should only asks once to choose a certificate for each "organization".

Reproducible: Always

Steps to Reproduce:
Server 1 asks for a certificate
User chooses a certificate
Server 2 asks for the same certificate
User chooses a certificate
Server 1 asks for a certificate
Actual Results:  
User again is unnecessarily asked again to choose a certificate.

Expected Results:  
Mozilla should at least remember which certificate is used for which server until the main window is closed.

If it safe to do so Mozilla should only asks once to choose a certificate for each "organization".
Version: unspecified → SeaMonkey 1.1 Branch
See bug 295922 and bug 395399
Assignee: general → kengert
Component: General → Security: PSM
OS: Windows XP → All
Product: Mozilla Application Suite → Core
QA Contact: general → psm
Hardware: PC → All
Version: SeaMonkey 1.1 Branch → Trunk
The problem described appears only if 
Menu -> Edit -> Preferences -> Privacy & Security -> Certificates -> Client Certificate Selection
is set to "Ask Every Time".
right.  the default for that pref was changed in 1.1.9
bug 149673 has an explanation of what's going on, the servers don't have a long enough SSL session cache. There is also an RFE, bug 32010, requesting an explicit "tie this cert to this server" option.
Status: UNCONFIRMED → RESOLVED
Closed: 16 years ago
Resolution: --- → DUPLICATE
You need to log in before you can comment on or make changes to this bug.