Skip to content
This repository has been archived by the owner on Feb 6, 2024. It is now read-only.

Added option to require service rules when a service URL is specified #131

Merged
merged 1 commit into from
Nov 4, 2015
Merged

Added option to require service rules when a service URL is specified #131

merged 1 commit into from
Nov 4, 2015

Conversation

joelvh
Copy link
Contributor

@joelvh joelvh commented Sep 28, 2015

We don't want to allow authentication from any service if no rules have been setup. The default is to allow this, but the new option makes sure that a rule is matched -- otherwise, login is disallowed.

@pencil
Copy link
Member

pencil commented Oct 1, 2015

What is the use case of an SSO that does not allow any services? Or is it to mitigate an accidental deletion of all service rules that would lead to accepting all services?

@joelvh
Copy link
Contributor Author

joelvh commented Oct 7, 2015

hi @pencil - exactly: it's to mitigate against accidentally accepting all services.

@luxflux
Copy link
Member

luxflux commented Nov 3, 2015

@pencil IMHO i think this would even be sane default, no?

pencil added a commit that referenced this pull request Nov 4, 2015
@pencil
Merge pull request #131 from identification-io/require_service_rules
bc913e0 
Added option to require service rules when a service URL is specified
@pencil pencil merged commit bc913e0 into rbCAS:master Nov 4, 2015
@pencil
Copy link
Member

pencil commented Nov 4, 2015

Setting this as default would probably cause a massive influx of bug reports.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@joelvh @pencil @luxflux