Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[IMP][16.0] auth_saml: download the provider metadata #739

Open
wants to merge 5 commits into
base: 16.0
Choose a base branch
from
Open

[IMP][16.0] auth_saml: download the provider metadata #739

wants to merge 5 commits into from

Conversation

dutrieuc
Copy link

@dutrieuc dutrieuc commented Dec 18, 2024
edited
Loading

Reopening of #647
Migration to 16 of #602 feature

gurneyalex and others added 2 commits December 18, 2024 16:47
@gurneyalex @dutrieuc
[IMP] auth_saml: download the provider metadata
10e5983 
On Office365, what you get when configuring an application for SAML
authentication is the URL of the federation metadata document. This URL
is stable, but the content of the document is not. I suspect some of the
encryption keys can be updated / renewed over time. The result is that
the configured provider in Odoo suddenly stops working, because the
messages sent by the Office365 provider can no longer be validated by
Odoo (because the federation document is out of date). Downloading the
new version and updating the auth.saml.provider record fixes the issue.

This PR adds a new field to store the URL of the metadata document. When
this field is set on a provider, you get a button next to it in the form
view to download the document from the URL. The button will not update
the document if it has not changed.

Additionally, when a SignatureError happens, we check if downloading the
document again fixes the issue.
@Ricardoalso @dutrieuc
Fix logic of SELECT FOR UDPDATE to only lock records that will be upd…
c648037 
…ated
@OCA-git-bot
Copy link
Contributor

Hi @vincent-hatakeyama,
some modules you are maintaining are being modified, check this out!

@dutrieuc dutrieuc changed the title 16.0 auth saml metadata [IMP][16.0] auth_saml: download the provider metadata Dec 18, 2024
@dutrieuc dutrieuc marked this pull request as ready for review December 18, 2024 19:07
@dutrieuc dutrieuc force-pushed the 16.0-auth_saml_metadata branch from 21d61dc to c0156e7 Compare December 19, 2024 10:24
@dutrieuc dutrieuc force-pushed the 16.0-auth_saml_metadata branch from c0156e7 to aa1f1e1 Compare December 19, 2024 10:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@dutrieuc @OCA-git-bot @gurneyalex @Ricardoalso