Ldap SSO Auth

The LDAP SSO Auth module provides a simplified Single Sign On via an LDAP server. It covers fewer use cases than the ldap_sso module but works faster without page redirects during authentication. This module is the right choice if all content should be accessible only to authenticated users.

REQUIREMENTS
------------

This module requires:

• ldap_servers
• ldap_authentication

Enabling the Internal Page Cache module is not recommended.

INSTALLATION
------------

Install the optimized module as you would typically install a contributed Drupal
module. Visit https://www.drupal.org/node/1897420 for further information.

Install with composer:

composer require drupal/ldap_sso_auth

CONFIGURATION
--------------

1. Navigate to Administration > People > LDAP servers > LDAP SSO Auth and
configure as the LDAP server needs it.

KNOWN ISSUES
------------

Symptom: Instead of being recreated, user deleted from Drupal receive access denied. Details: when a user is logged in to Drupal, then gets deleted, it's browser still holds the session cookie and on the next request this module will still receive a session object from Drupal with the deleted user's uid. Currently no other check is running so this module will not initiate the LDAP SSO user recreation process, but will not do anything thinking that the user has a valid living session. Workaround: the user should delete cookies or start a new sole incognito window.