Closed (fixed)
Project:
SAML Authentication
Version:
7.x-1.x-dev
Component:
Code
Priority:
Normal
Category:
Task
Assigned:
Unassigned
Reporter:
Created:
27 Mar 2019 at 09:48 UTC
Updated:
29 Aug 2022 at 21:39 UTC
Jump to comment: Most recent, Most recent file
Comments
Comment #2
klausiPatch.
Comment #3
smfsh commentedExtra logging is perfect. Only hesitation I have is printing the data array to the log in the event of the unique ID not being found. It's possible this array could contain something sensitive. What are your thoughts on this?
Comment #4
klausiWe have the GDPR policy that we need to log the data for security reasons (for example to detect and audit attacks), but we delete all log data after a week anyway.
Comment #6
roderikThank you! Committed.
Comment #8
roderik@klausi - similar to #3043704-11: Make user logout more robust:
I committed this last year when taking over maintenance of the D7 version but apparently didn't spot the extra thing: the special-case redirect to 'user/login' in case of a special error message.
Likewise: this is not in the D8+ version. I'm not going to revert it here unless someone ever tells me they have an issue with it - but I'm also not going to think about moving this forward in the D8+ version, myself.