Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow idleTimeout/lifespan larger than 32-bit signed integer. #79858

Merged
merged 1 commit into from
Oct 7, 2020
Merged

Allow idleTimeout/lifespan larger than 32-bit signed integer. #79858

merged 1 commit into from
Oct 7, 2020

Conversation

azasypkin
Copy link
Member

@azasypkin azasypkin commented Oct 7, 2020
edited
Loading

In this PR we add a client-side startTimer function that allows us to workaround a maximum allowed JavaScript timeout (32-bit signed integer or 2,147,483,647 ms or 24.8 days). The main idea here is that in case of large timeout values this method recursively calls setTimeout keeping track of current timeout ID so that it can be cleared at any time.

Unblocks: #68885
Fixes: #22374

Release note: Kibana can now properly handle values for xpack.security.session.idleTimeout and xpack.security.session.lifespan that are larger than ~24 days.

@azasypkin azasypkin added release_note:fix Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! Feature:Security/Authentication Platform Security - Authentication v8.0.0 v7.10.0 labels Oct 7, 2020
azasypkin
azasypkin commented Oct 7, 2020
View reviewed changes
x-pack/plugins/security/public/session/session_timeout.tsx
*/
private startTimer(updater: (timeoutID: number) => void, callback: () => void, timeout: number) {
// Max timeout is the largest possible 32-bit signed integer or 2,147,483,647 or 0x7fffffff.
const maxTimeout = 0x7fffffff;
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

note: didn't want to create a dedicated top level const for this purely "technical" thing....

@azasypkin azasypkin requested a review from jportner October 7, 2020 16:22
@azasypkin azasypkin marked this pull request as ready for review October 7, 2020 16:22
@azasypkin azasypkin requested a review from a team as a code owner October 7, 2020 16:22
@elasticmachine
Copy link
Contributor

Pinging @elastic/kibana-security (Team:Security)

jportner
jportner approved these changes Oct 7, 2020
View reviewed changes
Copy link
Contributor

@jportner jportner left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tested locally with small and large timeout values. LGTM! 🎉

x-pack/plugins/security/public/session/session_timeout.test.tsx
test(`stop works properly for large timeouts`, async () => {
http.fetch.mockResolvedValue({
...defaultSessionInfo,
idleTimeoutExpiration: now + 5_000_000_000,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

TIL you can use underscores in JS numbers 😁 pretty cool

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Yeah, I like it as well. Unfortunately we cannot use it in a non-test code yet (at least something was complaining about that during the build) 🙁 Should probably be easy to tweak our build/transpilation pipeline though, I see it's Stage 4 proposal already.

@azasypkin azasypkin merged commit d1e1050 into elastic:master Oct 7, 2020
@azasypkin azasypkin deleted the issue-22374-max-timeout branch October 7, 2020 18:44
@azasypkin azasypkin mentioned this pull request Oct 7, 2020
Merged
azasypkin added a commit to azasypkin/kibana that referenced this pull request Oct 7, 2020
@azasypkin
Allow idleTimeout/lifespan larger than 32-bit signed integer. (elasti…
1337e4a 
…c#79858)
@azasypkin azasypkin mentioned this pull request Oct 7, 2020
Merged
@azasypkin
Copy link
Member Author

7.10/7.10.0: aa8f83a
7.x/7.11.0: ab26307

@kibanamachine
Copy link
Contributor

kibanamachine commented Nov 4, 2020
edited
Loading

💔 Build Failed

Failed CI Steps

Metrics [docs]

page load bundle size

id before after diff
security 169.9KB 170.3KB +401.0B

History

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jportner jportner jportner approved these changes

Assignees
No one assigned
Labels
backported Feature:Security/Authentication Platform Security - Authentication release_note:fix Team:Security Team focused on: Auth, Users, Roles, Spaces, Audit Logging, and more! v7.10.0 v7.11.0 v8.0.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Large session timeout number expires session almost instantaneously
4 participants
@azasypkin @elasticmachine @kibanamachine @jportner