[Bug 20266] New: Authentication using Shibboleth - bootstrap
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20266 Bug ID: 20266 Summary: Authentication using Shibboleth - bootstrap Change sponsored?: --- Product: Koha Version: master Hardware: All OS: All Status: NEW Severity: enhancement Priority: P5 - low Component: Authentication Assignee: koha-bugs@lists.koha-community.org Reporter: matthias.meusburger@biblibre.com QA Contact: testopia@bugs.koha-community.org CC: dpavlin@rot13.org Bug 12046 stated that CAS authentication is too complex to be displayed in a modal window, therefore authentication is displayed in a separate page when CAS authentication is enabled. However, Shibboleth auth is quite the same as CAS auth in terms of complexity, and yet the modal is still used when Shibboleth authentication is enabled. This doesn't seem like a consistant behavior to me. Shouldn't the modal also be disabled when Shibboleth authentication is enabled? -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20266 Martin Renvoize <martin.renvoize@ptfs-europe.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Depends on| |8446 CC| |martin.renvoize@ptfs-europe | |.com Referenced Bugs: https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=8446 [Bug 8446] Shibboleth authentication -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20266 --- Comment #1 from Martin Renvoize <martin.renvoize@ptfs-europe.com> --- I'm not so sure myself.. in the modal driven option, we simply display a login URL which contains the redirect location so all authentication really happens at the identity provider end. It is slightly inconsistent with CAS, but is consistent with other auth methods. I should play with CAS a bit.. see what makes it too complex for the modal.. I'm envisioning that there's more functionality in CAS surrounding selecting the authentication source perhaps? -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20266 --- Comment #2 from Matthias Meusburger <matthias.meusburger@biblibre.com> --- Well, the most common use-case is to authenticate against a single CAS server. In this case, it's exactly the same as shibboleth: a link to the authentication server. But people can use C4/Auth_cas_servers.yaml to authenticate against multiple CAS servers. In this case, there are as many links as defined servers in the yaml file. However, I don't think this feature is widely used. -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20266 --- Comment #3 from Martin Renvoize <martin.renvoize@ptfs-europe.com> --- That makes sense.. you could quickly fill up a modal if you had lots of authentication endpoints.. Actually, that is one thing that I don't like about shibboleth being in there.. if you do have local, shibboleth, openid and ldap you also fill up the modal and it looks strange. For shibboleth the case of having multiple Identity providers is again handled outside of Koha which is nice.. the initial redirect takes you to a IdP list page at the NativeServiceProvider end... nicely side stepping the issue you have with CAS.. I wonder if we could do similar for CAS but inside Koha.. to make it a tiny bit more consistent with Shib and Local/LDAP.. Frankly.. I'm not sure it's a big enough issue to worry about though ? -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20266 --- Comment #4 from Owen Leonard <oleonard@myacpl.org> --- Is this still valid? -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=20266 Martin Renvoize (ashimema) <martin.renvoize@openfifth.co.uk> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |WONTFIX -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.
participants (1)
-
bugzilla-daemon@bugs.koha-community.org