-
- Downloads
Always whitelist the login fallback for SSO (#7153)
That fallback sets the redirect URL to itself (so it can process the login token then return gracefully to the client). This would make it pointless to ask the user for confirmation, since the URL the confirmation page would be showing wouldn't be the client's.
Showing
- changelog.d/7153.feature 1 addition, 0 deletionschangelog.d/7153.feature
- docs/sample_config.yaml 4 additions, 0 deletionsdocs/sample_config.yaml
- synapse/config/sso.py 15 additions, 0 deletionssynapse/config/sso.py
- tests/rest/client/v1/test_login.py 8 additions, 1 deletiontests/rest/client/v1/test_login.py
Loading
Please register or sign in to comment