sometimes getting wrong person logged in on caseconductor.allizom.org

RESOLVED INCOMPLETE

Status

Infrastructure & Operations
WebOps: Other
RESOLVED INCOMPLETE
6 years ago
4 years ago

People

(Reporter: camd, Unassigned)

Tracking

Details

(Reporter)

Description

6 years ago
Shyam,

Earlier today, when I navigated to this site, I was mysteriously logged in as you (Shyam).  Then later, John Hammink got the same thing, except logged in as me.  He didn't log in, he just WAS ALREADY logged in when he navigated there.

Carl and I were both puzzled by this and not quite sure what could cause it.  He asked:
[carljm:] do they have some kind of full-page caching layer in front of it that I don't know about? 
... 
because i'm quite sure we're sending the appropriate Vary: Cookie header

Writing a bug instead of email, so we can track this.
We do have Zeus in front of this site and caching, we have to (or your performance will drop).

I'm going to be away for the next week, there's Mozcamp Asia etc, so I'm not sure I can look into this until late next week at the earliest.

These are the headers :

fox2mike@woodpecker ~ $ curl -I -L "https://caseconductor.allizom.org/"
HTTP/1.1 302 FOUND
Server: Apache/2.2.15 (Red Hat)
Vary: Cookie, Accept-Encoding
X-Backend-Server: node200
Content-Type: text/html; charset=utf-8
strict-transport-security: max-age=86400
Date: Wed, 16 Nov 2011 04:40:51 GMT
Location: https://caseconductor.allizom.org/account/login/?next=%2F
Transfer-Encoding: chunked
Connection: Keep-Alive
Set-Cookie: messages="a9bbd8eaf18e9e6af18ddc63d5f37180d3b141b7$[[\"__json_message\"\05420\054\"Please log in to view this page.\"]]"; Path=/
x-frame-options: DENY
X-Cache-Info: not cacheable; response is 302 without expiry time

HTTP/1.1 200 OK
Server: Apache/2.2.15 (Red Hat)
Vary: Cookie, Accept-Encoding
X-Backend-Server: node200
Content-Type: text/html; charset=utf-8
strict-transport-security: max-age=86400
Date: Wed, 16 Nov 2011 04:40:51 GMT
Transfer-Encoding: chunked
Connection: Keep-Alive
Set-Cookie: csrftoken=f4e9a65f360ade37a911f26322fce7a3; expires=Wed, 14-Nov-2012 04:40:51 GMT; Max-Age=31449600; Path=/
x-frame-options: DENY
X-Cache-Info: caching

I'm going to toss this back into the queue, someone else from Webops should also be able to help.
Assignee: shyam → server-ops

Comment 2

6 years ago
I'm not able to reproduce. If you can still produce this please capture and paste the full headers.

Comment 3

6 years ago
Please reopen when comment 2 is ready.
Status: NEW → RESOLVED
Last Resolved: 6 years ago
Resolution: --- → INCOMPLETE
Component: Server Operations: Web Operations → WebOps: Other
Product: mozilla.org → Infrastructure & Operations
You need to log in before you can comment on or make changes to this bug.