Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

EI: Link to MAS for sign-out in MSC3824 OIDC-aware mode #7646

Closed
hughns opened this issue Aug 18, 2023 · 3 comments · Fixed by #7657 or #7658
Closed

EI: Link to MAS for sign-out in MSC3824 OIDC-aware mode #7646

hughns opened this issue Aug 18, 2023 · 3 comments · Fixed by #7657 or #7658
Assignees
@Velin92
Labels
A-Authentication T-Enhancement New features, changes in functionality, performance boosts, user-facing improvements

Comments

@hughns
Copy link
Member

hughns commented Aug 18, 2023
edited
Loading

This is a sub item from #7644

In the case of OIDC-aware clients, you cannot sign out of other sessions via the device manager in Element iOS anymore. Instead, users will need to be guided towards the MAS UI to take this actions.

MSC3824 now describes this requirement including a format of a deep link structure to pass the device ID: ?action=session_end&device_id=<device_id>
@hughns hughns changed the title Link to MAS for sign-out in MSC3824 OIDC-aware mode EI: Link to MAS for sign-out in MSC3824 OIDC-aware mode Aug 18, 2023
@pixlwave pixlwave added T-Enhancement New features, changes in functionality, performance boosts, user-facing improvements A-Authentication labels Aug 23, 2023
@pmaier1
Copy link

pmaier1 commented Aug 25, 2023
edited
Loading

  • We should add wording to let the user understand what's happening: "You will be redirected to your server's authentication provider to complete sign out."
  • If the server doesn't advertise an account management URL, the client should show a message saying that the functionality is currently unavailable and the user should contact the administrator.

@Velin92 Velin92 mentioned this issue Aug 25, 2023
Merged
@Velin92
Copy link
Member

Velin92 commented Aug 28, 2023

Reopened to address the following comment

  • We should add wording to let the user understand what's happening: "You will be redirected to your server's authentication provider to complete sign out."
  • If the server doesn't advertise an account management URL, the client should show a message saying that the functionality is currently unavailable and the user should contact the administrator.

@Velin92 Velin92 reopened this Aug 28, 2023
@Velin92 Velin92 mentioned this issue Aug 28, 2023
Merged
@Velin92
Copy link
Member

Velin92 commented Aug 28, 2023

  • We should add wording to let the user understand what's happening: "You will be redirected to your server's authentication provider to complete sign out."
  • If the server doesn't advertise an account management URL, the client should show a message saying that the functionality is currently unavailable and the user should contact the administrator.

I used alerts to display these dialogues.
Here is the PR with some videos for reference, these may be useful for android @pmaier1

#7658

@pmaier1 pmaier1 mentioned this issue Sep 8, 2023
Closed
@hughns hughns mentioned this issue Sep 8, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Velin92 Velin92

Labels
A-Authentication T-Enhancement New features, changes in functionality, performance boosts, user-facing improvements
Projects
Issue triage
Status: Closed
Milestone
No milestone
4 participants
@pixlwave @hughns @pmaier1 @Velin92