Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix: Add direct parameter to flow auth v2 #46534

Merged
merged 1 commit into from
Aug 5, 2024
Merged

fix: Add direct parameter to flow auth v2 #46534

merged 1 commit into from
Aug 5, 2024

Conversation

juliushaertl
Copy link
Member

@juliushaertl juliushaertl commented Jul 15, 2024
edited
Loading

In SSO environments with environment variable like kerberos we may not have this authentication type on iOS devices. The current approach to still allow login is to use a direct login with configuring a rewrite on the webserver level:

RewriteEngine on
RewriteCond %{QUERY_STRING} !(?:^|&)direct=[^&]+ [NC]
#RewriteCond %{HTTP_USER_AGENT} (.*)Nextcloud\ iOS(.*)
RewriteCond %{REQUEST_METHOD} =GET
RewriteRule ^/index\.php/login/v2/flow/(.*)$ $0?%{QUERY_STRING}&direct=1 [L,QSA,NC,R=302]
  • Resolves: #

Summary

  • Manually tested using curl and user_saml auth with environment variable
  • Testing with iOS and user_saml auth with environment variable

Checklist

@juliushaertl juliushaertl added bug 3. to review Waiting for reviews labels Jul 15, 2024
@juliushaertl
fix: Add direct parameter to flow auth v2
1aa2944 
Signed-off-by: Julius Härtl <jus@bitgrid.net>
@juliushaertl juliushaertl requested review from a team, ArtificialOwl, icewind1991, yemkareems, ChristophWurst and Altahrim and removed request for a team, ArtificialOwl, icewind1991 and yemkareems August 5, 2024 10:14
@juliushaertl
Copy link
Member Author

/backport to stable29

@juliushaertl
Copy link
Member Author

/backport to stable28

@juliushaertl juliushaertl merged commit 0678bdc into master Aug 5, 2024
169 checks passed
@juliushaertl juliushaertl deleted the fix/direct-flow-v2 branch August 5, 2024 20:05
@juliushaertl juliushaertl added this to the Nextcloud 30 milestone Aug 5, 2024
This was referenced Aug 5, 2024
Merged
Merged
@Altahrim Altahrim mentioned this pull request Aug 6, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ChristophWurst ChristophWurst ChristophWurst approved these changes

@susnux susnux susnux approved these changes

@icewind1991 icewind1991 Awaiting requested review from icewind1991 icewind1991 was automatically assigned from nextcloud/server-backend

@Altahrim Altahrim Awaiting requested review from Altahrim Altahrim was automatically assigned from nextcloud/server-backend

@yemkareems yemkareems Awaiting requested review from yemkareems yemkareems was automatically assigned from nextcloud/server-backend

Assignees
No one assigned
Labels
3. to review Waiting for reviews bug
Projects
None yet
Milestone
Nextcloud 30
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@juliushaertl @ChristophWurst @susnux