if no access_token for current client, redo sso
cleanup cookies on logout
do not localize sso url
using direct redirect method to avoid handling localized urls
on authentication set cookie secure and http only (#6554)
logout user only on POST request
Let the user confirm the logout via a form
acr values emptied as not supported(for the moment)
useless scope removed
ckan locale updated depending user preferred language on ozwillo
after logout redirection to organization page handled properly
username not updated on user login because not unique on IdP
redirect to organization page after logout (#6558)
nonce enable on authentication request (#6556)
client registration params reading handled
sso and slo redirect url contain the name instead of id
storing client's id and secret in Client obj
logging out the user
Retreving user by 'sub' attribute which represents the user_id.User name updated from received 'nickname' attribute
OIDC client computed for each organization
logout_url casted to string
Client building refactored
retreive user info via 'Bearer' authorization
user logging out
retreiving user, update its infos, log in
email scope added. Organization dependent params emptied because filled duringauthentication process
login function redirecting to idp and callback view added
initial commit with plugin structure