Create Login functionality for Members only pages

[rvizena]

New Page: https://dev-webguide-ucsb-edu-v01.pantheonsite.io/about-wsg/wsg-members-access

[rvizena]

Pages with Authentication

• Member Minutes
• Member Resources

Pages to Link to

• https://dev-webguide-ucsb-edu-v01.pantheonsite.io/resources
• Footer links

[tenken]

• attempt CAS integration for campus staff members. discussed 11-03-2020 meeting.

[tenken]

• submitted request to ETS via ServiceNow RITM0063861: SSO Federation Request - David Gurba

[tenken]

• installed CAS, ExternalAuth and CAS Attributes drupal 8 modules via SFTP to the site on the DEV instance. ScottG from ETS will move the site to Basic mode from Sandbox.

[tenken]

• ETA for completion from ETS is

  Estimated resolution time
  2020-12-07 09:28:32

[rvizena]

Private Content module has been added and new 'Members Area' Menu has been created for Minutes and Resources pages. We should add a redirect on successful login attempts to point to /members-area main page.

[tenken]

@rvizena A proof of concept was implemented around 10pm on 04-26-2021 in http://mla-webguide-ucsb-edu-v01.pantheonsite.io/

This is a basic solution from comments in this issue https://www.drupal.org/project/cas/issues/2960398#comment-12574447

Please see the footer link(s) I added where we have placed the member login. There is a "basic" login that redirects to /members-area after succesful CAS login.

I also have created a "1 hop" login link, which I somewhat more prefer. I created a site Redirect with the redirect module to take /authorized-user and redirect any access to that page to /members-area. This way the CAS login link which may be Indexed by Google on every page in the footer ultimately is an internal link /caslogin?returnto=/authorized-user that doesn't divulge anything about a Members Area page on the website. An astute hacker may try to /authorize-user directly, but they will still get a 403 error from drupal, but a casual onlooker of the site will not really see anything about the members area overtly on the site.

Let me know what link you want to go with ...

Edit: it looks like the Drupal CAS module is looking for other solutions to this problem, but no other solution is yet provided: https://www.drupal.org/project/cas/issues/3150047

[tenken]

• I have implemented url redirect on the site from /authorize-user to /members-area (I swear the Redirect UI is broken. I try to save a TO / FROM without using ADD NEW REDIRECT and thinking it worked until finally I go through Add new Redirect ...
• the redirect works for my dpgurb campus account.