Redirection loop with jsRedirect
Concerned version
Version: 2.0.15
Summary
- set jsRedirect = 1
- use SSL auth, by ajax, on a dedicated domain, distinct from the portal domain
- enable SAML, CAS, or OIDC
Then:
- Trigger authentication through a SAML/CAS/OIDC app
- log in using SSL by ajax (does not clean pdata->{url} because it's a different domain
⚠ ) - once you are redirected to the application, go back to portal
- redirection loop!
⚠
/saml is called with pdata->url=base64(http://auth.example.com/saml)
Possible fixes
The loop was fixed in #2061 (closed) but not if jsRedirect is enabled
WIP for #2792 (closed) fixes the issue by correctly cleaning url in pdata on login