[Koha-bugs] [Bug 23930] No permissions SSO login to staff client should redirect to a custom URL
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=23930 Alex Buckley changed: What|Removed |Added Resolution|--- |INVALID Status|ASSIGNED|RESOLVED --- Comment #5 from Alex Buckley --- Hi David(In reply to David Cook from comment #4) > I'm not sure that I understand this one. > > What SSO are you targeting and what scenario? > > From the OPAC side, I have a OpenID Connect client for Koha (which one of > these days I'll find time to upstream). If I already have a session with the > Identity Provider and I click on a Koha link, it'll prompt me to log in, > I'll choose my Identity Provider from the login options for Koha, it'll > bounce me to the IdP, then bounce me back. If I don't have > authorization/permission, I'd expect to see my original Koha page saying > that I'm not authorized. > > I could see it being an issue if it re-directed me to a login page though, > as I'd already be authenticated just not authorized... > > ...which is where I'm getting lost with your description. > > You're saying the patron has been authenticated but they're not authorized > to be in the staff client, so they're being re-directed to the Koha login > page instead of whatever page they were trying to access? > > I take it that you want to redirect the patron back to the page they were on > before they navigated to Koha? > > What kind of SSO is this? I'm guessing the redirection to the IdP must be > automatic and not require the user to click on something on the Koha staff > client login side? Hi David, We were using Mod_mellon and SAML, and yes once the user had been authenticated they were automatically re-directed to the Koha login page instead of whatever page they were trying to access. However, we've since shifted to using Shibboleth for implementing SSO so I think we can now close this bug report, as it is no longer redundant. Thanks, Alex -- You are receiving this mail because: You are watching all bug changes. ___ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
[Koha-bugs] [Bug 23930] No permissions SSO login to staff client should redirect to a custom URL
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=23930 David Cook changed: What|Removed |Added CC||dc...@prosentient.com.au --- Comment #4 from David Cook --- I'm not sure that I understand this one. What SSO are you targeting and what scenario? From the OPAC side, I have a OpenID Connect client for Koha (which one of these days I'll find time to upstream). If I already have a session with the Identity Provider and I click on a Koha link, it'll prompt me to log in, I'll choose my Identity Provider from the login options for Koha, it'll bounce me to the IdP, then bounce me back. If I don't have authorization/permission, I'd expect to see my original Koha page saying that I'm not authorized. I could see it being an issue if it re-directed me to a login page though, as I'd already be authenticated just not authorized... ...which is where I'm getting lost with your description. You're saying the patron has been authenticated but they're not authorized to be in the staff client, so they're being re-directed to the Koha login page instead of whatever page they were trying to access? I take it that you want to redirect the patron back to the page they were on before they navigated to Koha? What kind of SSO is this? I'm guessing the redirection to the IdP must be automatic and not require the user to click on something on the Koha staff client login side? -- You are receiving this mail because: You are watching all bug changes. ___ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
[Koha-bugs] [Bug 23930] No permissions SSO login to staff client should redirect to a custom URL
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=23930 Alex Buckley changed: What|Removed |Added Attachment #94894|0 |1 is obsolete|| -- You are receiving this mail because: You are watching all bug changes. ___ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
[Koha-bugs] [Bug 23930] No permissions SSO login to staff client should redirect to a custom URL
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=23930 Alex Buckley changed: What|Removed |Added Status|NEW |ASSIGNED --- Comment #3 from Alex Buckley --- Hi Katrin, Thanks for noting that. I am not happy with my initial patchfix for this so am going to remove it and start again on a fix for this. Thanks, Alex -- You are receiving this mail because: You are watching all bug changes. ___ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
[Koha-bugs] [Bug 23930] No permissions SSO login to staff client should redirect to a custom URL
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=23930 Katrin Fischer changed: What|Removed |Added CC||katrin.fisc...@bsz-bw.de Version|17.11 |master --- Comment #2 from Katrin Fischer --- Hi Alex, should this be updated (has a patch, but is Assigned) -- You are receiving this mail because: You are watching all bug changes. ___ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
[Koha-bugs] [Bug 23930] No permissions SSO login to staff client should redirect to a custom URL
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=23930 --- Comment #1 from Alex Buckley --- Created attachment 94894 --> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=94894=edit Bug 23930: Implemented syspref where you can configure URL re-directed to whena patron with insufficient permissions tries to login to the staff client Sponsored-by: Waikato Institute of Technology, New Zealand -- You are receiving this mail because: You are watching all bug changes. ___ Koha-bugs mailing list Koha-bugs@lists.koha-community.org https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/