Filter out disabled clients in the autostart login process

Created on 14 March 2025, 4 months ago

Problem/Motivation

The current behaviour of the OpenID Connect module does not handle the filtering of disabled clients effectively when trying to determine if only one OpenID Connect client is active.

Steps to reproduce

Enable the OpenID Connect module.
Set more than one client and disable one or more of them, but ensure that only one client is enabled.
Enable the Autostart login process setting in the OpenID Connect settings at /admin/config/people/openid-connect/settings.
Attempt to authenticate by visiting the /user/login page to trigger the auto-login.
Expect the auto-start login to occur, but instead, the Drupal login form will be shown.

Proposed resolution

This patch modifies the OpenID Connect auto-login logic to filter out disabled clients before evaluating whether only one client is enabled.

Remaining tasks

TBD

User interface changes

N/A

API changes

N/A

Data model changes

N/A

🐛 Bug report

Status

Needs review

Version

3.0

Component

Code

Created by

🇨🇦Canada chrisguindon

Live updates comments and jobs are added and updated live.

Comments & Activities

Issue created by @chrisguindon
Comment 4 months ago →
🇨🇦Canada chrisguindon
Comment 4 months ago →
🇨🇦Canada chrisguindon

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024