The recent change that put "1" as the default value for simplesamlphp_auth_allowdefaultloginusers is resulting in a situation that is too restrictive by default, especially with the introduction of the simplesamlphp_auth_activate directive. The problem arises when a privileged user, other than superuser (uid 1), is installing the module. If the module is configured with the default value for simplesamlphp_auth_allowdefaultloginusers, then the second simplesamlphp_auth_activate is set to true the user is logged out and can't log back in.

The default of "1" for simplesamlphp_auth_allowdefaultloginusers needs to be removed.

Comments

geekwisdom’s picture

geekwisdom commented
Status: Active » Closed (fixed)

The default was changed and simplesamlphp_auth_activate was implemented to resolve this issue.