-
Type:
Story
-
Status: Closed
-
Priority:
Minor
-
Resolution: Completed
-
Affects Version/s: None
-
Fix Version/s: 7.4.2 CE GA3, 7.4.13 DXP GA1, Master
-
Component/s: Application Security > SAML
-
Epic Link:
-
Sprint:AppSec Iteration 57, AppSec Iteration 58, AppSec Iteration 59, AppSec Iteration 60, AppSec Iteration 61, AppSec Iteration 62, AppSec Iteration 63, AppSec Iteration 64, AppSec Iteration 65, AppSec Iteration 66
-
Git Pull Request:
Motivation
SAML currently depends on a legacy hook plugin for certain functionality:
- Adds custom JSPs to the portal that are then dispatched to from the JspUtil
- Configures AutoLoginFilter for /c/portal/saml/auth_redirect
All this can be achieved with other features of portal and this should logically be contained within other existing SAML modules.
For example a new portlet with property "portlet.add.default.resource.check.whitelist" could be created for rendering SAML SLO status (the mentioned custom JSPs) with an absolute or relative URL in a metatype (See OAuth2's AuthorizeScreenConfiguration). This would bring the added benefit of customers being able to control which theme is applied to this screen.
Acceptance Criteria
- As a System Administrator, I want to alternative solutions for all the functions that the saml-hook gives.
- As a System Administrator, I want to get rid of the saml-hook and I don't want to deploy that anymore.
- causes
-
LPS-130247
SAML Role options contain dash character
- Closed
- demands
-
LPS-85437 Unable to auto login through SAML if the requested resource has a url path not defined for auto login filter (example calendar email link)
- Closed
- is related to
-
LPS-130139 Remove SDK from 7.4.x / master
-
- Closed
-
- relates
-
- Closed
-
-
- Closed
-