Feature #5829

[SSO] improve UI for ldap/local account login

Added by Ward Vandewege about 7 years ago. Updated almost 7 years ago.

Assigned To:
Target version:
Start date:
Due date:
% Done:


Estimated time:
(Total: 0.00 h)
Story points:


When SSO provider is configured to use (exactly one of) either LDAP or local authentication:
  • A user (who isn't already logged in) clicks the Workbench Log in button and gets redirected (through API server) to SSO provider
  • SSO provider prompts for a username and password, using a standard bootstrap form (possibly as a modal/overlay).
  • If authentication succeeds, call back to API server and from there to Workbench (as usual).
  • If authentication fails, prompt again, showing the error message in a bootstrap alert-danger or whatever.
  • Test cases: If authentication succeeds on a subsequent attempt -- with or without some "back" button use -- call back to API server rather than entering some default state like "continue to foo". IOW, make sure we don't lose "back to the workbench page I was originally trying to see" state when handling authentication failures.

AJAX instead of a regular form-submit: nice, but optional.


Task #5965: Update sso install docs for plain email/password loginResolvedWard Vandewege

Task #5936: Review SSO masterResolvedWard Vandewege

Associated revisions

Revision 02e1074d (diff)
Added by Ward Vandewege about 7 years ago

Fix docker image build for SSO server after refactoring work in #5829.

refs #5829


#1 Updated by Tom Clegg about 7 years ago

  • Description updated (diff)

#2 Updated by Tom Clegg about 7 years ago

  • Category set to SSO

#3 Updated by Peter Amstutz about 7 years ago

  • Assigned To set to Peter Amstutz

#4 Updated by Peter Amstutz about 7 years ago

  • Improve LDAP configuration formatting to be less error prone *
    root@hgi-exp-dev:/opt/sso-devise-omniauth-provider# RAILS_ENV=production bundle exec rails console /opt/sso-devise-omniauth-provider/config/initializers/load_config.rb:33:in `method': wrong number of arguments (0 for 1) (ArgumentError)     from /opt/sso-devise-omniauth-provider/config/initializers/load_config.rb:33:in `block (2 levels) in <top (required)>'     from /opt/sso-devise-omniauth-provider/config/initializers/load_config.rb:25:in `each'
  • Document secret_token in application.yml
  • Document uuid_prefix
  • "SECURITY WARNING: No secret option provided to Rack::Session::Cookie. This poses a security threat. It is strongly recommended that you provide a secret to prevent exploits that may be possible from crafted cookies. This will not be supported in future versions of Rack, and future versions will even invalidate your existing user cookies."

#5 Updated by Peter Amstutz almost 7 years ago

  • Status changed from New to Resolved

Also available in: Atom PDF