I was just thinking about our roundabout login/logout process using an internal OpenID server. We have a filter that intercepts the check and redirects the user to the OpenID login screen where they accept licenses etc. After authenticating, they are redirected back to our GeoServer. When the user logs out, we have to redirect them back to the logout endpoint on the OpenID server so the Single Sign-On removes/invalidates the session.
Having the custom logout I expect to make our side easier to manage. Chris Snider Senior Software Engineer Intelligent Software Solutions, Inc. [Description: Description: Description: cid:[email protected]] From: [email protected] [mailto:[email protected]] On Behalf Of Alessio Fabiani Sent: Friday, September 30, 2016 8:04 AM To: Chris Snider <[email protected]> Cc: Geoserver-devel <[email protected]> Subject: Re: [Geoserver-devel] GSIP 150 Pluggable Login Web Component Well I did not included customized logout buttons on this GSIP since (as far as I have seen until now) all the plugins actually intercept and handle a LogoutHandler. However I can extend the GSIP with this customization also if you think it would be useful too. Any comments from other PSC members? Best Regards, Alessio Fabiani. == GeoServer Professional Services from the experts! Visit http://goo.gl/it488V for more information. == Ing. Alessio Fabiani @alfa7691 Founder/Technical Lead GeoSolutions S.A.S. Via di Montramito 3/A 55054 Massarosa (LU) Italy phone: +39 0584 962313 fax: +39 0584 1660272 mob: +39 331 6233686 http://www.geo-solutions.it http://twitter.com/geosolutions_it ------------------------------------------------------- AVVERTENZE AI SENSI DEL D.Lgs. 196/2003 Le informazioni contenute in questo messaggio di posta elettronica e/o nel/i file/s allegato/i sono da considerarsi strettamente riservate. Il loro utilizzo è consentito esclusivamente al destinatario del messaggio, per le finalità indicate nel messaggio stesso. Qualora riceviate questo messaggio senza esserne il destinatario, Vi preghiamo cortesemente di darcene notizia via e-mail e di procedere alla distruzione del messaggio stesso, cancellandolo dal Vostro sistema. Conservare il messaggio stesso, divulgarlo anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo per finalità diverse, costituisce comportamento contrario ai principi dettati dal D.Lgs. 196/2003. The information in this message and/or attachments, is intended solely for the attention and use of the named addressee(s) and may be confidential or proprietary in nature or covered by the provisions of privacy act (Legislative Decree June, 30 2003, no.196 - Italy's New Data Protection Code).Any use not in accord with its purpose, any disclosure, reproduction, copying, distribution, or either dissemination, either whole or partial, is strictly forbidden except previous formal approval of the named addressee(s). If you are not the intended recipient, please contact immediately the sender by telephone, fax or e-mail and delete the information in this message that has been received in error. The sender does not give any warranty or accept liability as the content, accuracy or completeness of sent messages and accepts no responsibility for changes made after they were sent or for other risks which arise as a result of e-mail transmission, viruses, etc. --------------------------------------------------------------------- On Fri, Sep 30, 2016 at 3:20 PM, Chris Snider <[email protected]<mailto:[email protected]>> wrote: HI, Not a voting member, but… +1 Will this also allow for the logout button to be redirected to the outside authentication management endpoint for logging out? Chris Snider Senior Software Engineer Intelligent Software Solutions, Inc. [Description: Description: Description: cid:[email protected]] From: Alessio Fabiani [mailto:[email protected]<mailto:[email protected]>] Sent: Friday, September 30, 2016 4:45 AM To: Geoserver-devel <[email protected]<mailto:[email protected]>> Subject: [Geoserver-devel] GSIP 150 Pluggable Login Web Component A small yet useful GSIP. https://github.com/geoserver/geoserver/wiki/GSIP-150---Pluggable-Login-Web-Component It refers to the recent development on the OneLogin and OAuth2 security provider extensions for GeoServer, but it can also be useful for CAS and others needing to redirect outisde for authentication. Please, comment and vote. Best Regards, Alessio Fabiani. == GeoServer Professional Services from the experts! Visit http://goo.gl/it488V for more information. == Ing. Alessio Fabiani @alfa7691 Founder/Technical Lead GeoSolutions S.A.S. Via di Montramito 3/A 55054 Massarosa (LU) Italy phone: +39 0584 962313<tel:%2B39%200584%20962313> fax: +39 0584 1660272<tel:%2B39%200584%201660272> mob: +39 331 6233686<tel:%2B39%20331%206233686> http://www.geo-solutions.it http://twitter.com/geosolutions_it ------------------------------------------------------- AVVERTENZE AI SENSI DEL D.Lgs. 196/2003 Le informazioni contenute in questo messaggio di posta elettronica e/o nel/i file/s allegato/i sono da considerarsi strettamente riservate. Il loro utilizzo è consentito esclusivamente al destinatario del messaggio, per le finalità indicate nel messaggio stesso. Qualora riceviate questo messaggio senza esserne il destinatario, Vi preghiamo cortesemente di darcene notizia via e-mail e di procedere alla distruzione del messaggio stesso, cancellandolo dal Vostro sistema. Conservare il messaggio stesso, divulgarlo anche in parte, distribuirlo ad altri soggetti, copiarlo, od utilizzarlo per finalità diverse, costituisce comportamento contrario ai principi dettati dal D.Lgs. 196/2003. The information in this message and/or attachments, is intended solely for the attention and use of the named addressee(s) and may be confidential or proprietary in nature or covered by the provisions of privacy act (Legislative Decree June, 30 2003, no.196 - Italy's New Data Protection Code).Any use not in accord with its purpose, any disclosure, reproduction, copying, distribution, or either dissemination, either whole or partial, is strictly forbidden except previous formal approval of the named addressee(s). If you are not the intended recipient, please contact immediately the sender by telephone, fax or e-mail and delete the information in this message that has been received in error. The sender does not give any warranty or accept liability as the content, accuracy or completeness of sent messages and accepts no responsibility for changes made after they were sent or for other risks which arise as a result of e-mail transmission, viruses, etc. ---------------------------------------------------------------------
------------------------------------------------------------------------------
_______________________________________________ Geoserver-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/geoserver-devel
