cdef1b3ab0
Session was being lost due to the callback POST request cookies not being provided due to samesite=lax. This instead adds an additional hop in the flow to route the request via a GET request so the session is retained. SAML POST data is stored encrypted in cache via a unique ID then pulled out straight afterwards, and restored into POST for the SAML toolkit to validate. Updated testing to cover. |
||
|---|---|---|
| .. | ||
| AuthTest.php | ||
| LdapTest.php | ||
| MfaConfigurationTest.php | ||
| MfaVerificationTest.php | ||
| OidcTest.php | ||
| Saml2Test.php | ||
| SocialAuthTest.php | ||
| UserInviteTest.php | ||