Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-16630

Tree Node equivalent for Post process setting for Session Login properties

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Open
    • Priority: Major
    • Resolution: Unresolved
    • Affects Version/s: 6.5.2, 6.5.2.1, 6.5.2.2, 6.5.2.3, 7.0.0
    • Fix Version/s: None
    • Component/s: authentication, trees
    • Labels:
      None
    • Rank:
      1|i01rw7:

      Description

      Problem

      In Post Authentication Plugin one can easily change the session properties for SuccessURL, FullLoginURL, and loginURL thru PAP say thru PostProcessLoginSuccessURL, etc. Now the issue here is thart although there is nodes to do setSuccessURL, the issue is that the Session properties for "SuccessURL" follow what the sharedState.SUCCESS_URL value is.

      There is problem changing or affecting the change of this as the code does not let one override any Session Login properties as these session properties are defined as System property and cannot be changed by the nodes

      Impact
      This may be a show-stop for SAML2 integration with trees as it is a design issue with the Trees (missing functionality)

      Expectation
      Somehow there seems to be some missing element to decouple the successURL from the session "SuccessURL". It may be also important to change FullLoginURL too for some known AM defect when doing SAML2 (where all these session properties need to be edited which is normally done in the custom modules).

      Probable proposal:

      • Either make the setSessionProperties changeable in this node (and also that these values not override by later tree execution). [Impact: session properties whitelisting affected (complexity)]

        Attachments

          Activity

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            chee-weng.chea C-Weng C
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated: