Uploaded image for project: 'stripes-core'
  1. stripes-core
  2. STCOR-544

Set credentials: include on fetch to /saml/login

    XMLWordPrintable

Details

    • CP: sprint 114
    • 1
    • Core: Platform

    Description

      Overview

      In order to allow mod-login-saml to set a cookie (as part of CSRF prevention), we must set credentials: 'include' in the fetch call to /saml/login.

      Additional Details: https://wiki.folio.org/display/DD/SAML+CSRF+Prevention

      Acceptance Criteria

      • The call to /saml/login is allowed to set a cookie

      TestRail: Results

        Attachments

          Issue Links

            Activity

              People

                hji Hongwei Ji
                cmcnally Craig McNally
                Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved:

                  TestRail: Runs

                    TestRail: Cases