SSO Breaks new account verification link
| Project: | Shared Sign-On |
| Version: | 6.x-1.3 |
| Component: | Code |
| Category: | bug report |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | active |
The SSO module appears to be breaking the “one-time login” link in the account verification email that Drupal sends out.
Here’s the scenario. I have two sites at different domains, one is the “master” and the other the “slave”, according to SSO parlance. They share a user table and are linked by the SSO module. In general this works fine—users logged in on one site are automatically logged into the other, and remain logged in even when moving between domains.
The problem occurs when trying to create a new account on the “slave” site.
I have “require email verification” turned on for both sites. If you create a new account at the master site, the one-time login link in the email works fine—it logs you in and takes you to the “change your password” page.
But if you create a new account on the “slave” site, the link in the email does not log you in. When you click it the browser opens the slave site, but I can see in the status bar that it is trying to authenticate at the master site. The result is that it looses the session and throws you on to the home page of the slave site, not logged in.
Is this something that anyone else is seeing?
Thank you for any assistance you can provide.