New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Define the authentication flow #4

Open

3 tasks

rbarrois opened this issue May 3, 2015 · 1 comment

Assignees

Labels

design

Milestone

Member

rbarrois commented May 3, 2015

Start with a design doc.

Needs to provide the following features:

When I enter the new site while already connected on the old one, I don't see any password prompt
When I log out of one of the sites, I am automatically logged out of the other one
When I enter a sensitive area, I get a password prompt

rbarrois added the design label

rbarrois assigned fishilico

rbarrois added this to the v0.1.0 milestone

Member

fishilico commented May 7, 2015

If authgroupex is modified so that:

when doing a request with authreq=password in the query string, a password prompt always appears,
when doing a request with authreq=weak or weak=password, the response contains a new field auth containing either weak or password according to the authentication process which took place

... then I believe authgroupex can be used to implement the new authentication process.

For the logout part, we can use the redirect parameter of the /exit page (https://github.com/Polytechnique-org/platal/blob/xorg/1.1.15/modules/platal.php#L588) to kill the main session and return to the new site.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment