/saml_login redirects to /user/login. Notify if using PHPSESSION for session storage

If SimpleSAMLPHP is configured using the default PHPSESSION option for session management, the 8.x module silently fails and redirects to the user.login path.

The module needs to present a warning message that this is the reason it has exited out of the SAML login process.

Comment	File	Size	Author
#2	simplesamlphp_auth-storetype_warning-2897043-2-D8.patch	640 bytes	diamondsea
#2	8.x-3.x: PHP 7 & MySQL 5.5, D8.3 11 pass, 4 fail PHP 7 & MySQL 5.5, D8.8 21 pass

Support from Acquia helps fund testing for Drupal Acquia logo

Comments

Comment #1

24 July 2017 at 19:00

diamondsea created an issue. See original summary.

Log in or register to post comments

Comment #2

he/him/his

English

CreditAttribution: diamondsea as a volunteer and at Publicis Sapient for Publicis Sapient commented 25 July 2017 at 16:02

File	Size
simplesamlphp_auth-storetype_warning-2897043-2-D8.patch	640 bytes
8.x-3.x: PHP 7 & MySQL 5.5, D8.3 11 pass, 4 fail PHP 7 & MySQL 5.5, D8.8 21 pass

SImple patch to display warning. Should probably include hook_requirements() checks but this will at least help.

Log in or register to post comments

Comment #3

he/him/his

English

CreditAttribution: diamondsea as a volunteer and at Publicis Sapient for Publicis Sapient commented 25 July 2017 at 14:52

Category:

Bug report

» Feature request

Log in or register to post comments

Comment #4

he/him/his

English

CreditAttribution: diamondsea as a volunteer and at Publicis Sapient for Publicis Sapient commented 25 July 2017 at 15:59

Title:

Notify if using PHPSESSION for session storage

» /saml_login redirects to /user/login. Notify if using PHPSESSION for session storage

Log in or register to post comments

Comment #5

he/him/his

English

CreditAttribution: diamondsea as a volunteer and at Publicis Sapient for Publicis Sapient commented 25 July 2017 at 17:05

Not sure if #754560: Messages are lost if set just prior to logout might affect this or not. Mentioning here for future reference.

Log in or register to post comments

Berdir’s picture

Comment #6

German

Switzerland

CreditAttribution: Berdir commented 1 December 2019 at 17:00

Status:

Active

» Needs review

Log in or register to post comments

Berdir’s picture

Comment #7

German

Switzerland

CreditAttribution: Berdir commented 30 January 2020 at 22:29

Status:

Needs review

» Needs work

> SImple patch to display warning. Should probably include hook_requirements() checks but this will at least help.

I'd love to have a requirements check for that. Pretty sure that weird bugs like #2837029: All site forms fail with "The form has become outdated" after allowing "Authenticated user" role to log in with local accounts are actually a version of this.

Log in or register to post comments