Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update session AuthZ parameters on ACR change #984

Closed
yurem opened this issue Jan 18, 2019 · 5 comments

Comments

@yurem
Copy link
Contributor

commented Jan 18, 2019

Here s flow which used @jgomer2001 for testings:

  • Loginto oxTrust as admin
  • Set the oxtrust openid client with persist_client_authz = true and pre_authz = false
  • Logout
  • Log in to an app A (using an acr of level value 1)
  • Try to hit oxTrust /identity
  • In this case, no login form is shown. That’s OK
  • The consent screen is displayed, press “allow”
  • You are taken to app A! not to oxTrust.

@yurem yurem added the bug label Jan 18, 2019

@yurem yurem added this to the 3.1.6 milestone Jan 18, 2019

@yurem

This comment has been minimized.

Copy link
Contributor Author

commented Jan 18, 2019

@jgomer2001

This comment has been minimized.

Copy link
Contributor

commented Jan 19, 2019

Just to add a bit more of context to interested parties:
If the consent to oxTrust was allowed before attempting to login to app A, there is no problem, the following happens:

  • Login to app A
  • Login to oxTrust (success and no login form shown)
@yurem

This comment has been minimized.

Copy link
Contributor Author

commented Jan 23, 2019

@jgomer2001 I opened another issue because it's another problem

@jgomer2001

This comment has been minimized.

Copy link
Contributor

commented Feb 9, 2019

I'm sorry, but still facing the same problem described at the top with latest 3.1.6 oxtrust/oxauth war

@jgomer2001 jgomer2001 reopened this Feb 9, 2019

@jgomer2001

This comment has been minimized.

Copy link
Contributor

commented Feb 13, 2019

8b68925
4e933eb

Solved with yura's commits

@jgomer2001 jgomer2001 closed this Feb 13, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
3 participants
You can’t perform that action at this time.