Homec4science
Diffusion invenio-infoscience 75b4941f27b2

WebSession: refresh user detail only in Shibboleth
75b4941f27b2
Actions

Authored by Samuele Kaplun <samuele.kaplun@cern.ch> on Nov 23 2011, 15:06.

Description

WebSession: refresh user detail only in Shibboleth

  • If a user does not re-authenticate within one hour websession was reloading fresh information from Shibboleth, assuming this was well available over any HTTPS request. This is no longer the case. So a new check is performed to refresh user data only if Shibboleth is indeed loaded (otherwise empty external groups and user settings were replacing valid ones).

Details

Committed
Tibor Simko <tibor.simko@cern.ch>Nov 23 2011, 15:19
Parents
R3600:b1759372d4e7: Merge branch 'chayward/refextract-authextract'
Branches
Unknown
Tags
Unknown

Event Timeline

Tibor Simko <tibor.simko@cern.ch> committed R3600:75b4941f27b2: WebSession: refresh user detail only in Shibboleth (authored by Samuele Kaplun <samuele.kaplun@cern.ch>).Nov 23 2011, 15:19

Changes (2)

Path
Mmodules/webaccess/lib/external_authentication_sso.py
Mmodules/websession/lib/webuser.py

R3600:75b4941f27b2

View Options

modules/webaccess/lib/external_authentication_sso.py

Loading...
View Options

modules/websession/lib/webuser.py

Loading...
c4science ยท Help