Univention Bugzilla – Bug 55200
User is not logged into Portal if a Single Sign-On session exists
Last modified: 2022-09-14 14:11:37 CEST
+++ This bug was initially created as a clone of Bug #53146 +++ When being logged in via SSO (SAML), it should be possible to switch to a different Portal / UMC and already be logged in on the other server. This does not work in UCS 5. Is bug 52722 related/relevant? Setup: DC primary + DC backup, both portals configured for SSO (ucr set portal/auth-mode=saml). Log into one server via SSO, then switch to the other server. None of these options work: * click server overview, select other server * manually type other fqdn into browser I would at least expect that clicking on the side menu login button would recognize the session, but one has to login again on the other server. In my test i made sure that only the primary DC is the IdP, this is no issue of SSO session replication between servers.
When opening a Service directly the Service-Login redirects one to the Portal SAML-Login. After Login you are returned to the Service. When you now go to the Portal (same Tab) you aren't logged in. When you click on Login you mustn't enter any credentials. The unnecessary extra click should be omitted by detecting the existing SAMl-Session and using it.
The UCS 4 portal supported the feature that is requested here.