Mozilla does not remember chosen certificate

RESOLVED DUPLICATE of bug 149673

Status

()

Core
Security: PSM
RESOLVED DUPLICATE of bug 149673
10 years ago
10 years ago

People

(Reporter: Xypron, Assigned: kaie)

Tracking

Trunk
Points:
---

Firefox Tracking Flags

(Not tracked)

Details

(URL)

(Reporter)

Description

10 years ago
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.8.1.13) Gecko/20080313 SeaMonkey/1.1.9
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-AT; rv:1.8.1.13) Gecko/20080313 SeaMonkey/1.1.9

Some servers (e.g. http://service.sap.com) use certificates for global sign on. Each individual request is served by a different server. New in version 1.1.9 mozilla shows a dialogue to select which certificate shall be exposed to which server. Unfortunately Mozilla does not remember which certificate is used for which server if in the meanwhile another server has responded to a request, e.g.:

Server 1 asks for a certificate
User chooses a certificate
Server 2 asks for the same certificate
User chooses a certificate
Server 1 asks for a certificate
User again is unnecessarily asked again to choose a certificate.

Mozilla should at least remember which certificate is used for which server until the main window is closed.

If it safe to do so Mozilla should only asks once to choose a certificate for each "organization".

Reproducible: Always

Steps to Reproduce:
Server 1 asks for a certificate
User chooses a certificate
Server 2 asks for the same certificate
User chooses a certificate
Server 1 asks for a certificate
Actual Results:  
User again is unnecessarily asked again to choose a certificate.

Expected Results:  
Mozilla should at least remember which certificate is used for which server until the main window is closed.

If it safe to do so Mozilla should only asks once to choose a certificate for each "organization".
(Reporter)

Updated

10 years ago
Version: unspecified → SeaMonkey 1.1 Branch

Comment 1

10 years ago
See bug 295922 and bug 395399
Assignee: general → kengert
Component: General → Security: PSM
OS: Windows XP → All
Product: Mozilla Application Suite → Core
QA Contact: general → psm
Hardware: PC → All
Version: SeaMonkey 1.1 Branch → Trunk
(Reporter)

Comment 2

10 years ago
The problem described appears only if 
Menu -> Edit -> Preferences -> Privacy & Security -> Certificates -> Client Certificate Selection
is set to "Ask Every Time".

Comment 3

10 years ago
right.  the default for that pref was changed in 1.1.9
bug 149673 has an explanation of what's going on, the servers don't have a long enough SSL session cache. There is also an RFE, bug 32010, requesting an explicit "tie this cert to this server" option.
Status: UNCONFIRMED → RESOLVED
Last Resolved: 10 years ago
Resolution: --- → DUPLICATE
Duplicate of bug: 149673
You need to log in before you can comment on or make changes to this bug.