Persist Client Authorizations

By: Philip Feliprada user 27 Mar 2018 at 9:32 p.m. CDT

5 Responses
Philip Feliprada gravatar
Hi again, I would like to persist my users before proceeding to the "main page" which is the page I put in my Redirect Login URI. I can do this by setting the Persist Client Authorizations field to true and it is working well. The thing is when I click the allow button I get redirected to my "main page" which is fine but when I click the don't allow button i get redirected to the Post Logout Redirect URI then if I access my website again the session is not ended and I continue to get the "Persist Client Authorization" prompt page so if I click don't allow again the cycle keeps on repeating. I tried to handle it by code but I can't force to log out the user since there is no issued id_token. Is this how Persist Client Authorization behaves? If yes Can I request that if the user click the don't allow button the session will end and if I access my site again I will be prompt by Gluu's log in page. But its ok if my request is too much or is not appropriate I just want to know how "Persist Client Authorization" functionality behaves. Thanks as always! Philip
CentOS 6.0
closed

Answers

By Michael Schwartz Account Admin 27 Mar 2018 at 10:33 p.m. CDT

Copy
Michael Schwartz gravatar
Interesting question. I think this needs to be handled differently in the Gluu Server. Can you open an issue in the oxAuth Github, and reference this issue. If you have a proposed solution, you can describe it there and I will review. This behavior is not described in the openid spec, so see just need to figure out a solution that makes sense.

By Philip Feliprada user 27 Mar 2018 at 10:43 p.m. CDT

Copy
Philip Feliprada gravatar
Thank you Michael will try to post in Github and I will let you know here once I am done. I am not good technically but I will just propose the solution I've stated above. Hoping for a positive response regarding my issue.

By Philip Feliprada user 28 Mar 2018 at 12:32 a.m. CDT

Copy
Philip Feliprada gravatar
Hello Michael, I already posted this issue in Github. Kindly check it out here is the link: https://github.com/GluuFederation/oxAuth/issues/773. Thank you as always!

By Philip Feliprada user 28 Mar 2018 at 1 a.m. CDT

Copy
Philip Feliprada gravatar
UPDATES Correction: It does not redirect to the post logout redirect URI instead it proceeds to the "main page" with this error error=access_denied&error_description=The+resource+owner+or+authorization+server+denied+the+request.&state=1elzooc#

By Philip Feliprada user 28 Mar 2018 at 4:24 a.m. CDT

Copy
Philip Feliprada gravatar
Hi I would also like to ask is the "Persist Client Authorizations" page can be localized based on our language? lets say French language. I tried to change my language to Russian but the "Persist Client Authorizations" page is still english. THANKS AGAIN!

Post an answer