mahara-contributors team mailing list archive

Thread
Date

[Bug 1829108] Re: Changing the display name of the site shouldn't break the SAML private key pass

To: mahara-contributors@xxxxxxxxxxxxxxxxxxx
From: Dmitrii Metelkin <dmitriim@xxxxxxxxxxxxxxx>
Date: Wed, 08 Apr 2020 07:32:23 -0000
Reply-to: Bug 1829108 <1829108@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Moodle has a specific setting for that password and it invalidates
certificates when you change it. Also there is a proper description for
users.  Looks like we should go the same way.

-- 
You received this bug notification because you are a member of Mahara
Contributors, which is subscribed to Mahara.
Matching subscriptions: Subscription for all Mahara Contributors -- please ask on #mahara-dev or mahara.org forum before editing or unsubscribing it!
https://bugs.launchpad.net/bugs/1829108

Title:
  Changing the display name of the site shouldn't break the SAML private
  key pass

Status in Mahara:
  In Progress

Bug description:
  If we change the site name for a site that uses SAML it breaks the
  ability to login via SAML

  We can roll the certificates and delete old ones to fix this problem
  but it means the IdPs will need to update their info about the SP
  certificate so no one can log in until this is done.

  We should have a static SAML private key that is part of the saml auth
  plugin rather than rely on site name

To manage notifications about this bug go to:
https://bugs.launchpad.net/mahara/+bug/1829108/+subscriptions

References

[Bug 1829108] [NEW] Changing the display name of the site shouldn't break the SAML private key pass
From: Robert Lyon, 2019-05-15