Complete apache auth (SAML/SSO) flow with redirect page by mrow4a · Pull Request #40161 · owncloud/core

mrow4a · 2022-06-21T20:56:03Z

Description

Without this change, server-side redirect to default page for Apache Auth (e.g. Shibboleth) resulted in session data missing on client side. Flow was incomplete and was missing final redirect page on client side to correctly handle redirect_url and persist the session data on the client.

Related Issue

Fixes https://github.com/owncloud/enterprise/issues/5225
Fixes https://github.com/owncloud/enterprise/issues/4712
Related Core should check apache auth #31054

How Has This Been Tested?

manually in internal oc2.lab test instance

Types of changes

Bug fix (non-breaking change which fixes an issue)

Checklist:

update-docs · 2022-06-21T20:56:06Z

Thanks for opening this pull request! The maintainers of this repository would appreciate it if you would create a changelog item based on your changes.

mrow4a · 2022-06-27T07:16:22Z

I did not add acceptance tests as part of this PR, as these need to be in the apps handling the backend, in here we can only cover with unit tests

mmattel · 2022-06-30T17:23:55Z

@d7oc maybe of interest for you

mrow4a · 2022-07-10T16:43:56Z

@janackermann @DeepDiver1975 could you have a look here? target for this is oc10.11

core/Controller/LoginController.php

mmattel · 2022-07-13T07:56:13Z

I just made a small doc fix, unhide to see details.

ownclouders · 2022-07-13T08:17:16Z

💥 Acceptance tests pipeline apiWebdavPreviews-mariadb10.2-php7.4 failed. The build has been cancelled.

https://drone.owncloud.com/owncloud/core/36296/97

DeepDiver1975 · 2022-07-13T08:18:42Z

As discussed offline - as long as this works 👍

mmattel · 2022-07-13T08:22:05Z

@phil-davis I just added a comment text fix which resulted in Build was killed ... any CI hickup?

phil-davis · 2022-07-13T09:56:55Z

@phil-davis I just added a comment text fix which resulted in Build was killed ... any CI hickup?

This PR was quite a lot of commits behind master. I rebased just now - let's see if CI is happier.

phil-davis · 2022-07-13T10:25:30Z

https://drone.owncloud.com/owncloud/core/36296/97/14
apiWebdavPreviews/previews.feature:210

That is failing in master today - issue owncloud/QA#750 - it is being looked at...

sonarqubecloud · 2022-07-13T12:20:09Z

Kudos, SonarCloud Quality Gate passed!

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

75.0% Coverage
0.0% Duplication

sonarqubecloud · 2022-07-13T12:20:09Z

Kudos, SonarCloud Quality Gate passed!

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

75.0% Coverage
0.0% Duplication

mrow4a · 2022-07-14T06:18:44Z

@phil-davis btw, as mentioned in https://github.com/owncloud/enterprise/issues/5225#issuecomment-1167075255 and https://github.com/owncloud/enterprise/issues/5225#issuecomment-1166973577, as there is no acceptance test in user_shibolleth , we would need to make sure all works with SAML/SSO enabled in QA env.

mrow4a requested a review from DeepDiver1975 June 21, 2022 20:56

mrow4a self-assigned this Jun 21, 2022

mrow4a changed the title ~~complete apache auth flow with redirect page~~ WIP: complete apache auth flow with redirect page Jun 21, 2022

mrow4a force-pushed the e5225-bugfix/apache-login-app-loading-issues branch 3 times, most recently from 999e055 to d27da44 Compare June 23, 2022 19:43

mrow4a changed the title ~~WIP: complete apache auth flow with redirect page~~ complete apache auth flow with redirect page Jun 25, 2022

mrow4a force-pushed the e5225-bugfix/apache-login-app-loading-issues branch from d27da44 to 90f4a67 Compare June 25, 2022 13:37

mrow4a changed the title ~~complete apache auth flow with redirect page~~ Complete apache auth (SAML/SSO) flow with redirect page Jun 25, 2022

mrow4a force-pushed the e5225-bugfix/apache-login-app-loading-issues branch from 90f4a67 to 0b6a04b Compare June 25, 2022 13:42

mrow4a requested a review from AlexAndBear July 10, 2022 16:42

mmattel reviewed Jul 13, 2022

View reviewed changes

core/Controller/LoginController.php Outdated Show resolved Hide resolved

DeepDiver1975 approved these changes Jul 13, 2022

View reviewed changes

phil-davis force-pushed the e5225-bugfix/apache-login-app-loading-issues branch from 5f48833 to d23f5db Compare July 13, 2022 09:56

phil-davis mentioned this pull request Jul 13, 2022

apiWebdavPreviews/previews.feature:210 is failing on nightly in lots of app and needs further investigation owncloud/QA#750

Closed

mrow4a and others added 2 commits July 13, 2022 17:34

complete apache auth flow with redirect page

ebbd6ef

Update core/Controller/LoginController.php

c70ae52

phil-davis force-pushed the e5225-bugfix/apache-login-app-loading-issues branch from d23f5db to c70ae52 Compare July 13, 2022 11:50

phil-davis merged commit fc34ac6 into master Jul 13, 2022

delete-merged-branch bot deleted the e5225-bugfix/apache-login-app-loading-issues branch July 13, 2022 12:39

mrow4a mentioned this pull request Nov 2, 2022

add shib auth support for redirect url #40470

Merged

6 tasks

Conversation

mrow4a commented Jun 21, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Description

Related Issue

How Has This Been Tested?

Types of changes

Checklist:

Uh oh!

update-docs bot commented Jun 21, 2022

Uh oh!

mrow4a commented Jun 27, 2022

Uh oh!

mmattel commented Jun 30, 2022

Uh oh!

mrow4a commented Jul 10, 2022

Uh oh!

Uh oh!

mmattel commented Jul 13, 2022

Uh oh!

ownclouders commented Jul 13, 2022 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

DeepDiver1975 commented Jul 13, 2022

Uh oh!

mmattel commented Jul 13, 2022

Uh oh!

phil-davis commented Jul 13, 2022

Uh oh!

phil-davis commented Jul 13, 2022

Uh oh!

sonarqubecloud bot commented Jul 13, 2022

Uh oh!

sonarqubecloud bot commented Jul 13, 2022

Uh oh!

mrow4a commented Jul 14, 2022

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

mrow4a commented Jun 21, 2022 •

edited

Loading

ownclouders commented Jul 13, 2022 •

edited

Loading