Development #5043
Add a domain cookie to check if we are logged
100%
Description
Add a domain cookie to check if the user is logged. This cookie will be used by Mandaye to auto connect the user without doing a redirection to check if he is authenticated.
Fichiers
Révisions associées
Historique
Mis à jour par Frédéric Péters il y a presque 10 ans
s/the user is logged/the user once successfully logged in/
The idea is to redirect automatically to A2 for users that we now used it in the past.
The cookie should therefore be valid for longer than the browser session.
Mis à jour par Benjamin Dauvergne il y a presque 10 ans
- Patch proposed mis à Non
Frédéric Péters a écrit :
s/the user is logged/the user once successfully logged in/
The idea is to redirect automatically to A2 for users that we now used it in the past.
The cookie should therefore be valid for longer than the browser session.
I'm not for this kind of cookie that make other applications do something and that you cannot control. My idea was a cookie set on a common domain only when a session is opened on the IdP so that each application on common domain will know that a passive SSO is immediately possible.
Mis à jour par Benjamin Dauvergne il y a presque 10 ans
- Fichier 0001-middleware-add-a-middleware-to-install-a-cookie-when.patch 0001-middleware-add-a-middleware-to-install-a-cookie-when.patch ajouté
- Patch proposed changé de Non à Oui
Mis à jour par Benjamin Dauvergne il y a presque 10 ans
- Statut changé de Nouveau à Résolu (à déployer)
- % réalisé changé de 0 à 100
Appliqué par commit 85c24a59a6b538e1457478c0e83096bed4884c1d.
Mis à jour par Benjamin Dauvergne il y a presque 10 ans
- Statut changé de Résolu (à déployer) à Fermé
middleware: add a middleware to install a cookie when the user has an open session
fixes #5043