-
Notifications
You must be signed in to change notification settings - Fork 1
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Allow redirection after SSO login #36
Comments
It appears that there's a SAML parameter called RelayState (see https://stackoverflow.com/questions/34350160/what-is-exactly-relaystate-parameter-used-in-sso-ex-saml or http://docs.oasis-open.org/security/saml/Post2.0/sstc-saml-tech-overview-2.0-cd-02.html#5.1.2.SP-Initiated%20SSO:%20%20Redirect/POST%20Bindings|outline) that we may be able to use to redirect users upon login to desired pages. |
@connerbw The client who requested this is willing/able to create temporary accounts on their IdP for us to use in testing whenever that would be helpful. |
Will work:
Will not work (will fallback to home url, like it did before) Rules for |
Currently when users login using the generic Pressbooks/WordPress login routine, the user can specify a post-login redirection location in the login URL by appending
redirect_to=URL
to the login address, e.g.https://mynetwork.url/wp-login.php?redirect_to=https%3A%2F%2Fmynetwork.url%2Fwp-signup.php
(takes the user to the book registration page) orhttps://mynetwork.url/wp-login.php?redirect_to=https%3A%2F%2Fmynetwork.url%2Fwp-admin
(takes the user to the Pressbooks dashboard). When a user attempts to use this URL pattern in combination with login via our SSO method, however, no redirection occurs after login (the login URL is sanitized as part of the SSO login routine).See
pressbooks-saml-sso/inc/class-saml.php
Line 432 in e2c0f30
pressbooks-saml-sso/inc/namespace.php
Line 20 in e2c0f30
pressbooks-saml-sso/inc/class-saml.php
Lines 800 to 811 in e2c0f30
The text was updated successfully, but these errors were encountered: