Fix SAML Client login flow on Apple devices
Because the redirect from the SAML/SSO endpoint is a POST the lax/strict cookies are not properly send. Note that it is not strictly requried on this endpoint as we do not need the remember me data. Only the real session info is enough. The endpoint is also already protected by a state token. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
This commit is contained in:
parent
c4a9bd11b9
commit
763b52d402
1 changed files with 1 additions and 0 deletions
|
@ -207,6 +207,7 @@ class ClientFlowLoginController extends Controller {
|
||||||
/**
|
/**
|
||||||
* @NoAdminRequired
|
* @NoAdminRequired
|
||||||
* @NoCSRFRequired
|
* @NoCSRFRequired
|
||||||
|
* @NoSameSiteCookieRequired
|
||||||
* @UseSession
|
* @UseSession
|
||||||
*
|
*
|
||||||
* @param string $stateToken
|
* @param string $stateToken
|
||||||
|
|
Loading…
Reference in a new issue