Skip to content

Retain params on dashboard SSO reauthentication redirect

Drew Blessing requested to merge dblessing_sso_redirect_params into master

What does this MR do and why?

Follow-up to !142933 (comment 1748341758)

Ensure all filter params are passed through in the reauthentication redirect so they're not lost on return.

For example, the issue and merge request dashboard defaults to filtering by assignee, or for merge requests review assignee.

MR acceptance checklist

Please evaluate this MR against the MR acceptance checklist. It helps you analyze changes to reduce risks in quality, performance, reliability, security, and maintainability.

Screenshots or screen recordings

Screenshots are required for UI changes, and strongly recommended for all other merge requests.

No user-facing UI changes. Just including params from the current page in the redirect link for reauthentication.

How to set up and validate locally

Numbered steps to set up and validate the change are strongly suggested.

  1. To test you must have an SSO enabled/enforced group, and your SAML session must be expired (either you authed with password and not SAML, or it's been longer than 24 hours).
  2. Prior to applying this code change, you will be reauthenticated and returned to the same page, but without the default filter.
  3. After applying this code change, you will be reauthenticated and returned to the same page, but with filter params intact.
Edited by Drew Blessing

Merge request reports