StayConnected-Plugin: when user-agent changes login is only possible after deleting cookies
Updating of the browser version (or other parameters in the browser configuration) changes the fingerprint value in the persistent connection plugin. Login is not possible without deleting the llngconnexion-cookie.
Steps to reproduce:
- Start clean lemonldap:
docker run -d -e SSODOMAIN=test.local -e PORTAL_HOSTNAME=myportal.test.local -e MANAGER_HOSTNAME=mymanager.test.local -e HANDLER_HOSTNAME=myhandler.test.local -e TEST1_HOSTNAME=mytest1.test.local -e TEST2_HOSTNAME=mytest2.test.local -e LOGLEVEL=debug -e FASTCGI_LISTEN_PORT=9000 -p 80:80 -p 9000:9000 coudot/lemonldap-ng:2.0.9
- login as dwho and activate the plugin, save and logout
- login with activation of checkbox "Stay connected on this device"
- delete the lemonldap-session-cookie, change the user-agent-string of the browser (Firefox-Addon)
- refresh the page, enter the login data (checkbox "Stay connected on this device" is turned off)
- one is returned to the login-page, message: "Authentication required" original Browser: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:81.0) Gecko/20100101 Firefox/81.0
Login with registration of browser:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Logger Lemonldap::NG::Common::Logger::Std loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] User logger Lemonldap::NG::Common::Logger::Std loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Check configuration for Lemonldap::NG::Handler::PSGI::Main
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Lemonldap::NG::Common::Conf::Backends::File loaded.
Configuration unchanged, get configuration from cache.
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Get configuration 2
[Mon Nov 2 10:01:35 2020] [LLNG:48] [info] Loading configuration 2 for process 48
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Process 48 calls defaultValuesInit
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Process 48 calls jailInit
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Process 48 calls portalInit
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Process 48 calls locationRulesInit
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Process 48 calls sessionStorageInit
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Process 48 calls headersInit
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Process 48 calls postUrlInit
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Process 48 calls aliasInit
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Launching Lemonldap::NG::Handler::FastCGI::Loader->loadCustomHandlers(conf)
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Launching Lemonldap::NG::Portal::Main->reloadConf(conf)
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route psgi.js added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route psgi.js added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route portal.css added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route portal.css added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route : added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route : added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route ping added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route ping added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route refresh added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add OPTIONS route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add OPTIONS route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route logout added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Initialized CSP headers : default-src 'self';img-src 'self' data:;style-src 'self';font-src 'self';connect-src 'self';script-src 'self';
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Initialized CORS headers : Access-Control-Allow-Origin;*;Access-Control-Allow-Credentials;true;Access-Control-Allow-Headers;*;Access-Control-Allow-Methods;POST,GET;Access-Control-Expose-Headers;*;Access-Control-Max-Age;86400;
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Cookies will use SameSite=Lax
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Main::Menu loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Main::Menu initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Auth::Demo loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [warn] Using demonstration mode, go to Manager to edit the configuration
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Lib::OneTimeToken loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Auth::Demo initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::UserDB::Demo loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::UserDB::Demo initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::2F::Engines::Default loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking utotp2fActivation
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking totp2fActivation
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking u2fActivation
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking rest2fActivation
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking mail2fActivation
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking ext2fActivation
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking yubikey2fActivation
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking radius2fActivation
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking totp2fSelfRegistration
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking u2fSelfRegistration
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Checking yubikey2fSelfRegistration
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> not enabled
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Processing Extra 2F modules
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::2F::Engines::Default initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Plugins::Notifications loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route notifback added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route notifback added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route notifback added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Lib::Notifications::JSON loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Use extension "json" to store notification files
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Found endAuth entry point:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> checkNotifDuringAuth
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Plugins::Notifications initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Plugins::History loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Found endAuth entry point:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> run
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Plugins::History initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Plugins::StayConnected loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route registerbrowser added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Found beforeAuth entry point:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> check
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Found endAuth entry point:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> newDevice
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Found beforeLogout entry point:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> logout
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Plugins::StayConnected initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Plugins::GrantSession loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Found afterData entry point:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> run
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Plugins::GrantSession initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Plugins::Upgrade loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route upgradesession added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route upgradesession added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route renewsession added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route renewsession added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Plugins::Upgrade initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Plugins::AutoSignin loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Found beforeAuth entry point:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> check
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Plugins::AutoSignin initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Plugins::RESTServer loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Lib::Captcha loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route renewcaptcha added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add DELETE route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route : added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route * added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring auth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add PUT route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route : added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Plugins::RESTServer initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Password::Demo loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Found forAuthUser entry point:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] -> _modifyPassword
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Password::Demo initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Plugins::Register loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Declaring unauth route
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add POST route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route register added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Add GET route:
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] route register added
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Lib::Captcha loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Register::Demo loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Register::Demo initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Plugin ::Plugins::Register initializated
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Vhost mymanager.test.local added in trusted domains
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Vhost mytest1.test.local added in trusted domains
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Vhost mytest2.test.local added in trusted domains
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Vhost myportal.test.local added in trusted domains
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Lemonldap::NG::Handler::PSGI::Main: configuration is up to date
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Get session fd2b567b414a73c6b0690b6df5d9a20432c4e761987a2447bfa7a4db07ee1e3a from Handler::Main::Run
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Check session validity from Handler
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Session timeout -> 72000
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Session _utime -> 1604311294
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] now -> 1604311295
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Session timeoutActivityInterval -> 60
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Session TTL = 71999
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] No URL authentication level found...
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] myportal.test.local: Apply default rule
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] removing cookie
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Cookies -> llnglanguage=de; lemonldap=fd2b567b414a73c6b0690b6df5d9a20432c4e761987a2447bfa7a4db07ee1e3a
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] CookieName -> lemonldap
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] newCookies -> llnglanguage=de;
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] User dwho was granted to access to /registerbrowser
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Start routing registerbrowser
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Module Lemonldap::NG::Portal::Lib::OneTimeToken loaded
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Trying to load token 1604239414_13753
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Processing code ref
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Calling autoredirect
[Mon Nov 2 10:01:35 2020] [LLNG:48] [debug] Building redirection to http://myportal.test.local/
172.17.0.1 - - [02/Nov/2020:10:01:35 +0000] "POST /registerbrowser HTTP/1.1" 302 5 "http://myportal.test.local/?cancel=1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:75.0) Gecko/20100101 Firefox/75.0"
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Check configuration for Lemonldap::NG::Handler::PSGI::Main
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Get configuration 2.
Get configuration from cache without verification.
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Lemonldap::NG::Handler::PSGI::Main: configuration is up to date
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Get session fd2b567b414a73c6b0690b6df5d9a20432c4e761987a2447bfa7a4db07ee1e3a from Handler::Main::Run
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Check session validity from Handler
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Session timeout -> 72000
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Session _utime -> 1604311294
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] now -> 1604311295
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Session timeoutActivityInterval -> 60
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Session TTL = 71999
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] No URL authentication level found...
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] myportal.test.local: Apply default rule
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] removing cookie
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Cookies -> llnglanguage=de; lemonldap=fd2b567b414a73c6b0690b6df5d9a20432c4e761987a2447bfa7a4db07ee1e3a; llngconnexion=0f86f9bd95a624e108ac59e4d80cc8db15b1230e5aacd2e3d952f3e0c29764b7
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] CookieName -> lemonldap
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] newCookies -> llnglanguage=de; llngconnexion=0f86f9bd95a624e108ac59e4d80cc8db15b1230e5aacd2e3d952f3e0c29764b7
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] User dwho was granted to access to /
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Start routing default route
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Processing importHandlerData
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Processing controlUrl
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Processing checkLogout
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Processing code ref
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Launching ::Password::Demo::_modifyPassword
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Calling autoredirect
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Evaluate condition 1 for module Appslist
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Evaluate condition $_auth =~ /^(LDAP|DBI|Demo)$/ for module ChangePassword
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Evaluate condition 1 for module LoginHistory
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Evaluate condition $_oidcConsents && $_oidcConsents =~ /\w+/ for module OidcConsents
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Evaluate condition 1 for module Logout
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Check if Appslist has to be displayed
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] No URL authentication level found...
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Regexp "Notifications" match
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] No URL authentication level found...
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Regexp "Sessions" match
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] No URL authentication level found...
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Regexp "Configuration" match
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] No URL authentication level found...
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] mytest2.test.local: Apply default rule
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] No URL authentication level found...
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] mytest1.test.local: Apply default rule
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Check if ChangePassword has to be displayed
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Check if LoginHistory has to be displayed
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Check if OidcConsents has to be displayed
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Check if Logout has to be displayed
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Searching for "dwho" accepted notification(s)
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Skin returned: menu
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Calling sendHtml with template menu
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Starting HTML generation using /usr/share/lemonldap-ng/portal/templates/bootstrap/menu.tpl
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Sending /usr/share/lemonldap-ng/portal/templates/bootstrap/menu.tpl
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Apply following CORS policy :
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Access-Control-Allow-Origin
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] *
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Access-Control-Allow-Credentials
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] true
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Access-Control-Allow-Headers
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] *
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Access-Control-Allow-Methods
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] POST,GET
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Access-Control-Expose-Headers
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] *
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Access-Control-Max-Age
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] 86400
[Mon Nov 2 10:01:35 2020] [LLNG:47] [debug] Apply following CSP : default-src 'self';img-src 'self' data:;style-src 'self';font-src 'self';connect-src 'self';script-src 'self';form-action *;frame-ancestors 'none';
Failed login attempt:
172.17.0.1 - - [02/Nov/2020:10:01:35 +0000] "GET / HTTP/1.1" 200 4333 "http://myportal.test.local/?cancel=1" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:75.0) Gecko/20100101 Firefox/75.0"
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Check configuration for Lemonldap::NG::Handler::PSGI::Main
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Get configuration from cache without verification.
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Lemonldap::NG::Handler::PSGI::Main: configuration is up to date
[Mon Nov 2 10:02:11 2020] [LLNG:49] [info] No cookie found
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Build URL http://myportal.test.local/
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Redirect 172.17.0.1 to portal (url was /)
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] User not authenticated, Try in use, cancel redirection
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Start routing default route
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Processing controlUrl
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Processing code ref
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Processing code ref
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Launching ::Plugins::StayConnected::check
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Persistent connection found
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Module Lemonldap::NG::Portal::Lib::OneTimeToken loaded
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Token 1604239451_37844 created
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Starting HTML generation using /usr/share/lemonldap-ng/portal/templates/bootstrap/../common/registerBrowser.tpl
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Sending /usr/share/lemonldap-ng/portal/templates/bootstrap/../common/registerBrowser.tpl
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Apply following CORS policy :
172.17.0.1 - - [02/Nov/2020:10:02:11 +0000] "GET / HTTP/1.1" 200 347 "-" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:83.0) Gecko/20100101 Firefox/83.0"
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Access-Control-Allow-Origin
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] *
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Access-Control-Allow-Credentials
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] true
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Access-Control-Allow-Headers
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] *
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Access-Control-Allow-Methods
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] POST,GET
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Access-Control-Expose-Headers
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] *
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Access-Control-Max-Age
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] 86400
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Apply following CSP : default-src 'self';img-src 'self' data:;style-src 'self';font-src 'self';connect-src 'self';script-src 'self';form-action *;frame-ancestors 'none';
[Mon Nov 2 10:02:11 2020] [LLNG:49] [debug] Returned status: -4 (PE_SENDRESPONSE)
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Check configuration for Lemonldap::NG::Handler::PSGI::Main
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Get configuration from cache without verification.
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Lemonldap::NG::Handler::PSGI::Main: configuration is up to date
[Mon Nov 2 10:02:12 2020] [LLNG:51] [info] No cookie found
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Build URL http://myportal.test.local/
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Redirect 172.17.0.1 to portal (url was /)
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] User not authenticated, Try in use, cancel redirection
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Start routing default route
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Processing restoreArgs
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Processing controlUrl
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Processing code ref
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Processing code ref
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Launching ::Plugins::StayConnected::check
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Persistent connection found
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Module Lemonldap::NG::Portal::Lib::OneTimeToken loaded
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Trying to load token 1604239451_37844
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Persistent connection found
[Mon Nov 2 10:02:12 2020] [LLNG:51] [warn] Fingerprint changed for dwho
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] [warn] Fingerprint changed for dwho
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Processing code ref
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Launching ::Plugins::AutoSignin::check
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Processing extractFormInfo
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Prepare token
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Token 1604239452_56854 created
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Returned error: 9 (PE_FIRSTACCESS)
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Display type standardform
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Skin returned: login
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Calling sendHtml with template login
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Starting HTML generation using /usr/share/lemonldap-ng/portal/templates/bootstrap/login.tpl
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Sending /usr/share/lemonldap-ng/portal/templates/bootstrap/login.tpl
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Apply following CORS policy :
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Access-Control-Allow-Origin
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] *
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Access-Control-Allow-Credentials
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] true
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Access-Control-Allow-Headers
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] *
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Access-Control-Allow-Methods
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] POST,GET
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Access-Control-Expose-Headers
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] *
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Access-Control-Max-Age
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] 86400
[Mon Nov 2 10:02:12 2020] [LLNG:51] [debug] Apply following CSP : default-src 'self';img-src 'self' data:;style-src 'self';font-src 'self';connect-src 'self';script-src 'self';form-action *;frame-ancestors 'none';
172.17.0.1 - - [02/Nov/2020:10:02:12 +0000] "POST / HTTP/1.1" 200 2288 "http://myportal.test.local/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:83.0) Gecko/20100101 Firefox/83.0"
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Check configuration for Lemonldap::NG::Handler::PSGI::Main
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Get configuration from cache without verification.
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Lemonldap::NG::Handler::PSGI::Main: configuration is up to date
[Mon Nov 2 10:02:16 2020] [LLNG:52] [info] No cookie found
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Build URL http://myportal.test.local/
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Redirect 172.17.0.1 to portal (url was /)
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] User not authenticated, Try in use, cancel redirection
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Start routing default route
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Processing restoreArgs
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Processing controlUrl
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Processing code ref
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Processing code ref
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Launching ::Plugins::StayConnected::check
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Persistent connection found
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Module Lemonldap::NG::Portal::Lib::OneTimeToken loaded
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Token 1604239456_8222 created
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Skin bootstrap selected from GET/POST parameter
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Starting HTML generation using /usr/share/lemonldap-ng/portal/templates/bootstrap/../common/registerBrowser.tpl
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Skin bootstrap selected from GET/POST parameter
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Sending /usr/share/lemonldap-ng/portal/templates/bootstrap/../common/registerBrowser.tpl
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Apply following CORS policy :
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Access-Control-Allow-Origin
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] *
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Access-Control-Allow-Credentials
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] true
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Access-Control-Allow-Headers
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] *
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Access-Control-Allow-Methods
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] POST,GET
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Access-Control-Expose-Headers
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] *
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Access-Control-Max-Age
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] 86400
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Apply following CSP : default-src 'self';img-src 'self' data:;style-src 'self';font-src 'self';connect-src 'self';script-src 'self';form-action *;frame-ancestors 'none';
[Mon Nov 2 10:02:16 2020] [LLNG:52] [debug] Returned status: -4 (PE_SENDRESPONSE)
172.17.0.1 - - [02/Nov/2020:10:02:16 +0000] "POST / HTTP/1.1" 200 345 "http://myportal.test.local/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:83.0) Gecko/20100101 Firefox/83.0"
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Check configuration for Lemonldap::NG::Handler::PSGI::Main
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Get configuration from cache without verification.
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Lemonldap::NG::Handler::PSGI::Main: configuration is up to date
[Mon Nov 2 10:02:16 2020] [LLNG:50] [info] No cookie found
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Build URL http://myportal.test.local/
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Redirect 172.17.0.1 to portal (url was /)
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] User not authenticated, Try in use, cancel redirection
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Start routing default route
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Processing restoreArgs
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Processing controlUrl
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Processing code ref
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Processing code ref
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Launching ::Plugins::StayConnected::check
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Persistent connection found
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Module Lemonldap::NG::Portal::Lib::OneTimeToken loaded
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Trying to load token 1604239456_8222
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Persistent connection found
[Mon Nov 2 10:02:16 2020] [LLNG:50] [warn] Fingerprint changed for dwho
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] [warn] Fingerprint changed for dwho
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Processing code ref
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Launching ::Plugins::AutoSignin::check
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Processing extractFormInfo
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Prepare token
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Token 1604239456_35690 created
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Returned error: 9 (PE_FIRSTACCESS)
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Display type standardform
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Skin returned: login
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Calling sendHtml with template login
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Starting HTML generation using /usr/share/lemonldap-ng/portal/templates/bootstrap/login.tpl
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Sending /usr/share/lemonldap-ng/portal/templates/bootstrap/login.tpl
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Apply following CORS policy :
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Access-Control-Allow-Origin
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] *
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Access-Control-Allow-Credentials
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] true
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Access-Control-Allow-Headers
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] *
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Access-Control-Allow-Methods
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] POST,GET
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Access-Control-Expose-Headers
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] *
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Access-Control-Max-Age
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] 86400
[Mon Nov 2 10:02:16 2020] [LLNG:50] [debug] Apply following CSP : default-src 'self';img-src 'self' data:;style-src 'self';font-src 'self';connect-src 'self';script-src 'self';form-action *;frame-ancestors 'none';
172.17.0.1 - - [02/Nov/2020:10:02:16 +0000] "POST / HTTP/1.1" 200 2287 "http://myportal.test.local/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:83.0) Gecko/20100101 Firefox/83.0"
172.17.0.1 - - [02/Nov/2020:10:05:15 +0000] "GET /static/languages/en.json HTTP/1.1" 200 14250 "http://myportal.test.local/" "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:83.0) Gecko/20100101 Firefox/83.0"
Proposal to solve: delete cookie, when fingerprint or token do not match. This could be done after this line: https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/-/blob/v2.0/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Plugins/StayConnected.pm#L187.
For me it solved the problems.
Another question would be, if changing of the browser version, should lead to being logged out. An alternative to the browser-fingerprint would be to store a token in the localStorage of the browser. This should be roughly as secure as the browser fingerprint, which can be also read out by javascript.