dotCMS / core

Headless/Hybrid Content Management System for Enterprises
http://dotcms.com
Other
867 stars 467 forks source link

Spike: investigate using SSO on clusters without load balancer sticky sessions #30374

Open yolabingo opened 1 month ago

yolabingo commented 1 month ago

Parent Issue

Implement Redis Session sharing #24294

Task

SSO login on Auth does not work when we turn off load balancer sticky sessions. Will surmised that "the saml redirect needs to explicitly call for the session to be persisted"

Proposed Objective

Core Features

Proposed Priority

Priority 2 - Important

Acceptance Criteria

SSO authentication does not require stickiness to a single node in a cluster

External Links... Slack Conversations, Support Tickets, Figma Designs, etc.

https://dotcms.slack.com/archives/C03PEHAKL6M/p1729106564941579

Assumptions & Initiation Needs

No response

Quality Assurance Notes & Workarounds

No response

Sub-Tasks & Estimates

No response

yolabingo commented 1 month ago

After some consideration I think we may not want to prioritize this. Continuing to rely on sticky sessions for BE access to clustered envs may be the best path. We will discuss internally.