Skip to content

fix: Add direct parameter to flow auth v2 #46534

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
juliusknorr merged 1 commit into from
Aug 5, 2024
Merged

fix: Add direct parameter to flow auth v2 #46534

juliusknorr merged 1 commit into from
Aug 5, 2024

Conversation

@juliusknorr
Copy link
Member

@juliusknorr juliusknorr commented Jul 15, 2024
edited
Loading

In SSO environments with environment variable like kerberos we may not have this authentication type on iOS devices. The current approach to still allow login is to use a direct login with configuring a rewrite on the webserver level:

RewriteEngine on
RewriteCond %{QUERY_STRING} !(?:^|&)direct=[^&]+ [NC]
#RewriteCond %{HTTP_USER_AGENT} (.*)Nextcloud\ iOS(.*)
RewriteCond %{REQUEST_METHOD} =GET
RewriteRule ^/index\.php/login/v2/flow/(.*)$ $0?%{QUERY_STRING}&direct=1 [L,QSA,NC,R=302]
  • Resolves: #

Summary

  • Manually tested using curl and user_saml auth with environment variable
  • Testing with iOS and user_saml auth with environment variable

Checklist

@juliusknorr juliusknorr added bug 3. to review Waiting for reviews labels Jul 15, 2024
github-advanced-security[bot]
github-advanced-security bot found potential problems Jul 16, 2024
View reviewed changes
@juliusknorr juliusknorr requested review from a team, Altahrim, ArtificialOwl, ChristophWurst, icewind1991 and yemkareems and removed request for a team, ArtificialOwl, icewind1991 and yemkareems August 5, 2024 10:14
@juliusknorr
Copy link
Member Author

juliusknorr commented Aug 5, 2024

/backport to stable29

@juliusknorr
Copy link
Member Author

juliusknorr commented Aug 5, 2024

/backport to stable28

@juliusknorr juliusknorr merged commit 0678bdc into master Aug 5, 2024
@juliusknorr juliusknorr deleted the fix/direct-flow-v2 branch August 5, 2024 20:05
@juliusknorr juliusknorr added this to the Nextcloud 30 milestone Aug 5, 2024
This was referenced Aug 5, 2024
Merged
Merged
@Altahrim Altahrim mentioned this pull request Aug 6, 2024
Merged
@nextcloud nextcloud deleted a comment from backportbot bot Sep 10, 2024
@ChristophWurst
Copy link
Member

ChristophWurst commented Sep 10, 2024

/backport to stable27

@backportbot backportbot bot mentioned this pull request Sep 10, 2024
Merged
2 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ChristophWurst ChristophWurst ChristophWurst approved these changes

@susnux susnux susnux approved these changes

@icewind1991 icewind1991 Awaiting requested review from icewind1991 icewind1991 is a code owner automatically assigned from nextcloud/server-backend

@Altahrim Altahrim Awaiting requested review from Altahrim Altahrim is a code owner automatically assigned from nextcloud/server-backend

@yemkareems yemkareems Awaiting requested review from yemkareems yemkareems is a code owner automatically assigned from nextcloud/server-backend

Assignees

No one assigned

Labels

3. to review Waiting for reviews bug

Projects

None yet

Milestone

Nextcloud 30

Development

Successfully merging this pull request may close these issues.

4 participants

@juliusknorr @ChristophWurst @susnux