You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Background: We use Google apps for our company and are using this plugin to allow users to sign into redmine with their Google account on our domain.
Issue: When a user is logged into their personal gmail account and not their work account (this happens, for example, when users are working from home or using their smart phones), they just get the notice_domain_not_allowed error message and are dropped back into the redmine login page. This creates an endless loop with no obvious indication that the user needs to sign into their Google apps account on our domain.
Workaround: Google's hd parameter restricts the login to the specified hosted domain. Adding
:hd=>'domain.com'
to the oauth_client.auth_code.authorize_url() call in redmine_oauth_controller.rb correctly brings users to a Google login page if they're logged into different Google account so that fixes our use case.
Problem: It would be nice to use the allowed_domains setting for this and have a checkbox to restrict to a hosted domain. The problem is that allowed_domains is an array and hd only allows a single domain so there's not a one-to-one mapping. Adding a separate textfield input for a hosted domain is an option but it seems redundant.
If anyone has any ideas I'd be happy to do some hacking and submit a patch.
The text was updated successfully, but these errors were encountered:
Background: We use Google apps for our company and are using this plugin to allow users to sign into redmine with their Google account on our domain.
Issue: When a user is logged into their personal gmail account and not their work account (this happens, for example, when users are working from home or using their smart phones), they just get the notice_domain_not_allowed error message and are dropped back into the redmine login page. This creates an endless loop with no obvious indication that the user needs to sign into their Google apps account on our domain.
Workaround: Google's hd parameter restricts the login to the specified hosted domain. Adding
to the oauth_client.auth_code.authorize_url() call in redmine_oauth_controller.rb correctly brings users to a Google login page if they're logged into different Google account so that fixes our use case.
Problem: It would be nice to use the allowed_domains setting for this and have a checkbox to restrict to a hosted domain. The problem is that allowed_domains is an array and hd only allows a single domain so there's not a one-to-one mapping. Adding a separate textfield input for a hosted domain is an option but it seems redundant.
If anyone has any ideas I'd be happy to do some hacking and submit a patch.
The text was updated successfully, but these errors were encountered: