Skip to content

feat: propagate logout to identity provider#3596

Merged
hperl merged 7 commits intomasterfrom
logout-notify-idp
Aug 14, 2023
Merged

feat: propagate logout to identity provider#3596
hperl merged 7 commits intomasterfrom
logout-notify-idp

Conversation

@hperl
Copy link
Copy Markdown
Contributor

@hperl hperl commented Aug 4, 2023

If the user logs out of Hydra, we want to propagate this to a connected Ory Kratos instance so that the user is also logged out there.

Related issue(s)

Part of https://github.com/ory-corp/cloud/issues/5038

Checklist

  • I have read the contributing guidelines.
  • I have referenced an issue containing the design document if my change
    introduces a new feature.
  • I am following the
    contributing code guidelines.
  • I have read the security policy.
  • I confirm that this pull request does not address a security
    vulnerability. If this pull request addresses a security vulnerability, I
    confirm that I got the approval (please contact
    [email protected]) from the maintainers to push
    the changes.
  • I have added tests that prove my fix is effective or that my feature
    works.
  • I have added or changed the documentation.

Further Comments

@hperl hperl requested a review from aeneasr as a code owner August 4, 2023 12:08
@hperl hperl marked this pull request as draft August 4, 2023 12:09
hperl
hperl commented Aug 4, 2023
View reviewed changes
hperl
hperl commented Aug 4, 2023
View reviewed changes
@hperl hperl force-pushed the logout-notify-idp branch 4 times, most recently from 017859b to bf7b3ef Compare August 10, 2023 10:51
@hperl hperl mentioned this pull request Aug 10, 2023
Merged
7 tasks
@hperl hperl requested review from alnr and jonas-jonas August 10, 2023 11:53
@hperl hperl marked this pull request as ready for review August 10, 2023 11:53
jonas-jonas
jonas-jonas previously approved these changes Aug 10, 2023
View reviewed changes
@hperl hperl force-pushed the logout-notify-idp branch from 2b3718d to 8d35bcd Compare August 10, 2023 12:08
alnr
alnr reviewed Aug 10, 2023
View reviewed changes
alnr
alnr reviewed Aug 10, 2023
View reviewed changes
@codecov
Copy link
Copy Markdown

codecov bot commented Aug 10, 2023
edited
Loading

Codecov Report

Merging #3596 (5704640) into master (1d73d83) will increase coverage by 0.03%.
Report is 1 commits behind head on master.
The diff coverage is n/a.

❗ Current head 5704640 differs from pull request most recent head 0a241c5. Consider uploading reports for the commit 0a241c5 to get more accurate results

@@            Coverage Diff             @@
##           master    #3596      +/-   ##
==========================================
+ Coverage   76.26%   76.29%   +0.03%     
==========================================
  Files         132      132              
  Lines        9930     9974      +44     
==========================================
+ Hits         7573     7610      +37     
- Misses       1840     1845       +5     
- Partials      517      519       +2

see 11 files with indirect coverage changes

@hperl hperl force-pushed the logout-notify-idp branch from 8d35bcd to 802e3a3 Compare August 10, 2023 14:08
@hperl hperl requested review from alnr and jonas-jonas August 10, 2023 14:09
hperl added 2 commits August 10, 2023 16:11
@hperl
feat: propagate logout to identity provider
f21381f 
This commit improves the integration between Hydra and Kratos when logging
out the user.

This adds a new configuration key for configuring a Kratos admin URL.
Additionally, Kratos can send a session ID when accepting a login request.
If a session ID was specified and a Kratos admin URL was configured,
Hydra will disable the corresponding Kratos session through the admin API
if a frontchannel or backchannel logout was triggered.
@hperl
fix: add special case for MySQL
4649f4d
@hperl hperl force-pushed the logout-notify-idp branch from 802e3a3 to 4649f4d Compare August 10, 2023 14:12
@hperl hperl self-assigned this Aug 10, 2023
alnr
alnr reviewed Aug 10, 2023
View reviewed changes
alnr
alnr previously approved these changes Aug 11, 2023
View reviewed changes
aeneasr
aeneasr requested changes Aug 14, 2023
View reviewed changes
Copy link
Copy Markdown
Member

@aeneasr aeneasr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice! Few things:

  • naming (config, api, db)
  • test for migration
  • ConfirmLoginSession does not set login session id correctly+

@hperl hperl requested a review from aeneasr August 14, 2023 10:04
@hperl hperl merged commit c004fee into master Aug 14, 2023
@hperl hperl deleted the logout-notify-idp branch August 14, 2023 10:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aeneasr aeneasr aeneasr approved these changes

@alnr alnr alnr left review comments

@jonas-jonas jonas-jonas Awaiting requested review from jonas-jonas

+1 more reviewer

@kmherrmann kmherrmann kmherrmann left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@hperl hperl

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@hperl @aeneasr @alnr @jonas-jonas @kmherrmann