Logout user if external session not active and user is having external authmap

Created on 18 January 2023, about 2 years ago

Problem/Motivation

We have some roles allowed to be logged in but we do not want the users who are connected through external login system to stay logged in after they logout from SSO.

Currently it allows as we allow normal registration too and by default they get Authenticated user role which we have allowed. Code where it fails for us https://git.drupalcode.org/project/simplesamlphp_auth/-/blob/8.x-3.x/src...

Steps to reproduce

  1. Login to two different sites using SSO
  2. Logout from one site
  3. Check simplesaml logout is invoked for second site
  4. User still stays logged in on second site (Issue)

Proposed resolution

Add a new configuration and code to logout user if connected via SSO even if has role allowed for default login.

Remaining tasks

  1. Raise MR
  2. Review
  3. Merge

User interface changes

None

API changes

None?

Data model changes

None?

Feature request
Status

Needs review

Version

3.0

Component

Code

Created by

🇮🇳India nikunjkotecha India, Gujarat, Rajkot

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

  • Status changed to Needs review about 2 years ago
Production build 0.71.5 2024