Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSO allowed hosts is always empty so cross site redirects fail #147

Open
2 tasks
roborourke opened this issue Jan 16, 2025 · 0 comments
Open
2 tasks

SSO allowed hosts is always empty so cross site redirects fail #147

roborourke opened this issue Jan 16, 2025 · 0 comments
Labels
bug Existing functionality isn't behaving as expected

Comments

@roborourke
Copy link
Contributor

roborourke commented Jan 16, 2025
edited
Loading

Steps to reproduce:

  1. Setup a primary user account on the main site of a network, not a super admin, primary site user meta must be present
  2. SSO log in to a different sub site
  3. Error message comes up saying "abc.com is not a whitelisted cross-network SSO site."

Because Altis hides the plugin UI the settings field to enter allowed hosts is missing, and the default configuration option value is empty. I would expect to not see this error message because as a user I have no way to know how to remedy it, and as an admin I have no way to fix it via settings.

Acceptance criteria:

  • Stop hiding the UI, or provide a subset of the UI suitable for Altis
  • or, filter wpsimplesaml_allowed_hosts to allow any hosts that are part of the network by default
@roborourke roborourke added the bug Existing functionality isn't behaving as expected label Jan 16, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Existing functionality isn't behaving as expected
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@roborourke