I have a question about the sso.redirect property in SystemGlobals.properties. When is this used? I thought I read somewhere in the documentation that it is called when authentication.type = sso and the user attempts to access a section that they don't have permission to. However, I can only find one place in the code where it is called and that is in PostAction.downloadAttach(). And so in my
testing, I could not get it to redirect.
Maybe I'm going about this the wrong way, though. I'd like to integrate it into my existing application, using a cookie with a custom SSO implementation. However, I don't want to allow anonymous users, so if one of my users bookmarks a forum and goes there without first logging into my existing application, I want it to forward to my application's login page. I would think that I'd implement this using the sso.redirect, but I can't get it to forward. All I get is the "you don't have sufficient privileges" message.
Is this a bug or am I using it wrong?
[originally posted on jforum.net by greg_williams]