trabajo-afectivo/app/controllers/sessions_controller.rb

# Copyright (C) 2012-2022 Zammad Foundation, https://zammad-foundation.org/

class SessionsController < ApplicationController
  prepend_before_action -> { authentication_check && authorize! }, only: %i[switch_to_user list delete]
  skip_before_action :verify_csrf_token, only: %i[show destroy create_omniauth failure_omniauth]
  skip_before_action :user_device_log, only: %i[create_sso]

  # "Create" a login, aka "log the user in"
  def create
    user = authenticate_with_password
    initiate_session_for(user)

    # return new session data
    render status: :created,
           json:   SessionHelper.json_hash(user).merge(config: config_frontend)
  end

  def create_sso
    raise Exceptions::Forbidden, 'SSO authentication disabled!' if !Setting.get('auth_sso')

    user = begin
      login = request.env['REMOTE_USER'] ||
              request.env['HTTP_REMOTE_USER'] ||
              request.headers['X-Forwarded-User']

      User.lookup(login: login&.downcase)
    end

    raise Exceptions::NotAuthorized, __('Missing SSO ENV REMOTE_USER or X-Forwarded-User header') if login.blank?
    raise Exceptions::NotAuthorized, "No such user '#{login}' found!" if user.blank?

    session.delete(:switched_from_user_id)
    authentication_check_prerequesits(user, 'SSO', {})

    redirect_to '/#'
  end

  def show
    user = authentication_check_only
    raise Exceptions::NotAuthorized, 'no valid session' if user.blank?

    initiate_session_for(user)

    # return current session
    render json: SessionHelper.json_hash(user).merge(config: config_frontend)
  rescue Exceptions::NotAuthorized => e
    render json: {
      error:       e.message,
      config:      config_frontend,
      models:      SessionHelper.models,
      collections: { Locale.to_app_model => Locale.where(active: true) }
    }
  end

  # "Delete" a login, aka "log the user out"
  def destroy
    if Rails.env.test? && ENV['FAKE_SELENIUM_LOGIN_USER_ID'].present?
      ENV['FAKE_SELENIUM_LOGIN_USER_ID'] = nil # rubocop:disable Rails/EnvironmentVariableAccess
    end

    reset_session

    # Remove the user id from the session
    @_current_user = nil

    # reset session
    request.env['rack.session.options'][:expire_after] = nil

    render json: {}
  end

  def create_omniauth

    # in case, remove switched_from_user_id
    session[:switched_from_user_id] = nil

    auth = request.env['omniauth.auth']

    if !auth
      logger.info('AUTH IS NULL, SERVICE NOT LINKED TO ACCOUNT')

      # redirect to app
      redirect_to '/'
    end

    # Create a new user or add an auth to existing user, depending on
    # whether there is already a user signed in.
    authorization = Authorization.find_from_hash(auth)
    if !authorization
      authorization = Authorization.create_from_hash(auth, current_user)
    end

    if in_maintenance_mode?(authorization.user)
      redirect_to '/#'
      return
    end

    # set current session user
    current_user_set(authorization.user)

    # log new session
    authorization.user.activity_stream_log('session started', authorization.user.id, true)

    # remember last login date
    authorization.user.update_last_login

    # redirect to app
    redirect_to '/'
  end

  def failure_omniauth
    raise Exceptions::UnprocessableEntity, "Message from #{params[:strategy]}: #{params[:message]}"
  end

  # "switch" to user
  def switch_to_user
    # check user
    if !params[:id]
      render(
        json:   { message: 'no user given' },
        status: :not_found
      )
      return false
    end

    user = User.find(params[:id])
    if !user
      render(
        json:   {},
        status: :not_found
      )
      return false
    end

    # remember original user
    session[:switched_from_user_id] ||= current_user.id

    # log new session
    user.activity_stream_log('switch to', current_user.id, true)

    # set session user
    current_user_set(user)

    render(
      json: {
        success:  true,
        location: '',
      },
    )
  end

  # "switch" back to user
  def switch_back_to_user

    # check if it's a switch back
    raise Exceptions::Forbidden if !session[:switched_from_user_id]

    user = User.lookup(id: session[:switched_from_user_id])
    if !user
      render(
        json:   {},
        status: :not_found
      )
      return false
    end

    # remember current user
    current_session_user = current_user

    # remove switched_from_user_id
    session[:switched_from_user_id] = nil

    # set old session user again
    current_user_set(user)

    # log end session
    current_session_user.activity_stream_log('ended switch to', user.id, true)

    render(
      json: {
        success:  true,
        location: '',
      },
    )
  end

  def available
    render json: {
      app_version: AppVersion.get
    }
  end

  def list
    assets = {}
    sessions_clean = []
    SessionHelper.list.each do |session|
      next if session.data['user_id'].blank?

      sessions_clean.push session
      next if session.data['user_id']

      user = User.lookup(id: session.data['user_id'])
      next if !user

      assets = user.assets(assets)
    end
    render json: {
      sessions: sessions_clean,
      assets:   assets,
    }
  end

  def delete
    SessionHelper.destroy(params[:id])
    render json: {}
  end

  private

  def authenticate_with_password
    auth = Auth.new(params[:username], params[:password])
    raise_unified_login_error if !auth.valid?

    session.delete(:switched_from_user_id)
    authentication_check_prerequesits(auth.user, 'session', {})
  end

  def initiate_session_for(user)
    request.env['rack.session.options'][:expire_after] = 1.year if params[:remember_me]
    session[:persistent] = true
    user.activity_stream_log('session started', user.id, true)
  end

  def config_frontend

    # config
    config = {}
    Setting.select('name, preferences').where(frontend: true).each do |setting|
      next if setting.preferences[:authentication] == true && !current_user

      value = Setting.get(setting.name)
      next if !current_user && (value == false || value.nil?)

      config[setting.name] = value
    end

    # remember if we can switch back to user
    if session[:switched_from_user_id]
      config['switch_back_to_possible'] = true
    end

    # remember session_id for websocket logon
    if current_user
      config['session_id'] = session.id.public_id
    end

    config
  end

end
Maintenance: Update copyright header. 2022-01-01 13:38:12 +00:00			`# Copyright (C) 2012-2022 Zammad Foundation, https://zammad-foundation.org/`
Code reformattingand code layout beautying. 2013-06-12 15:59:58 +00:00
Init version. 2012-04-10 14:06:46 +00:00			`class SessionsController < ApplicationController`
Refactoring: Replaced home-rolled authorization logic in Controllers with Pundit. 2020-03-19 09:39:51 +00:00			`prepend_before_action -> { authentication_check && authorize! }, only: %i[switch_to_user list delete]`
Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`skip_before_action :verify_csrf_token, only: %i[show destroy create_omniauth failure_omniauth]`
Refactoring: Migrate user permission handling to Pundit policies. 2021-07-23 13:07:16 +00:00			`skip_before_action :user_device_log, only: %i[create_sso]`
Init version. 2012-04-10 14:06:46 +00:00
			`# "Create" a login, aka "log the user in"`
			`def create`
Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`user = authenticate_with_password`
			`initiate_session_for(user)`
- Refactored authentication_check_only. - Replaced session[:request_type] with session[:persistent]. 2015-06-24 08:48:48 +00:00
Code cleanup. 2012-04-11 06:37:54 +00:00			`# return new session data`
Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`render status: :created,`
			`json: SessionHelper.json_hash(user).merge(config: config_frontend)`
Init version. 2012-04-10 14:06:46 +00:00			`end`

Existing user session when requesting SSO session create endpoint will fail device check because of missing fingerprint param (which is required as soon as a user/session is present). 2019-09-30 17:34:13 +00:00			`def create_sso`
Fixes issue #2983 - HTTP 401 responses causing issues with Basic Authentication. 2021-02-04 08:28:41 +00:00			`raise Exceptions::Forbidden, 'SSO authentication disabled!' if !Setting.get('auth_sso')`
Fixes #3128 - Add SSO login button to login page. 2020-08-26 13:21:17 +00:00
			`user = begin`
Maintenance: Updated rubocop(-* gems) to latest version (0.92.0). 2020-09-30 09:07:01 +00:00			`login = request.env['REMOTE_USER'] \|\|`
			`request.env['HTTP_REMOTE_USER'] \|\|`
			`request.headers['X-Forwarded-User']`
Fixes #3128 - Add SSO login button to login page. 2020-08-26 13:21:17 +00:00
Maintenance: Updated rubocop(-* gems) to latest version (0.92.0). 2020-09-30 09:07:01 +00:00			`User.lookup(login: login&.downcase)`
			`end`
Fixes #3128 - Add SSO login button to login page. 2020-08-26 13:21:17 +00:00
Fixes #2709, fixes #2666, fixes #2665, fixes #556, fixes #3275 - Refactoring: Implement new translation toolchain based on gettext. - Translations are no longer fetched from the cloud. - Instead, they are extracted from the codebase and stored in i18n/zammad.pot. - Translations will be managed via a public Weblate instance soon. - The translated .po files are fed to the database as before. - It is now possible to change "translation" strings for en-us locally via the admin GUI. - It is no longer possible to submit local changes. 2021-11-15 15:58:19 +00:00			`raise Exceptions::NotAuthorized, __('Missing SSO ENV REMOTE_USER or X-Forwarded-User header') if login.blank?`
Fixes #3128 - Add SSO login button to login page. 2020-08-26 13:21:17 +00:00			`raise Exceptions::NotAuthorized, "No such user '#{login}' found!" if user.blank?`

			`session.delete(:switched_from_user_id)`
			`authentication_check_prerequesits(user, 'SSO', {})`
Existing user session when requesting SSO session create endpoint will fail device check because of missing fingerprint param (which is required as soon as a user/session is present). 2019-09-30 17:34:13 +00:00
			`redirect_to '/#'`
			`end`

Init version. 2012-04-10 14:06:46 +00:00			`def show`
Existing user session when requesting SSO session create endpoint will fail device check because of missing fingerprint param (which is required as soon as a user/session is present). 2019-09-30 17:34:13 +00:00			`user = authentication_check_only`
			`raise Exceptions::NotAuthorized, 'no valid session' if user.blank?`

Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`initiate_session_for(user)`
Init version of object manager. 2014-09-09 23:42:20 +00:00
Code cleanup. 2012-04-11 06:37:54 +00:00			`# return current session`
Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`render json: SessionHelper.json_hash(user).merge(config: config_frontend)`
			`rescue Exceptions::NotAuthorized => e`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`render json: {`
Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`error: e.message,`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`config: config_frontend,`
Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`models: SessionHelper.models,`
			`collections: { Locale.to_app_model => Locale.where(active: true) }`
Code cleanup. 2012-04-11 06:37:54 +00:00			`}`
Init version. 2012-04-10 14:06:46 +00:00			`end`

			`# "Delete" a login, aka "log the user out"`
			`def destroy`
Maintenance: Port old keyboard shortcuts tests to capybara. 2022-01-07 06:28:11 +00:00			`if Rails.env.test? && ENV['FAKE_SELENIUM_LOGIN_USER_ID'].present?`
			`ENV['FAKE_SELENIUM_LOGIN_USER_ID'] = nil # rubocop:disable Rails/EnvironmentVariableAccess`
			`end`
Added remember_me feature to login page. 2012-04-20 12:24:37 +00:00
Fixed race condition: AJAX data fetch requests re-set sessions that should get deleted by logout request. 2018-06-26 07:26:19 +00:00			`reset_session`

Init version. 2012-04-10 14:06:46 +00:00			`# Remove the user id from the session`
Improved session validation and usage of cors headers. 2017-02-15 12:29:25 +00:00			`@_current_user = nil`
Code cleanup. 2012-04-11 06:37:54 +00:00
Improved session validation and usage of cors headers. 2017-02-15 12:29:25 +00:00			`# reset session`
			`request.env['rack.session.options'][:expire_after] = nil`
Added remember_me feature to login page. 2012-04-20 12:24:37 +00:00
Applied rubocop Style/SpaceInsideHashLiteralBraces. 2015-04-27 14:47:58 +00:00			`render json: {}`
Init version. 2012-04-10 14:06:46 +00:00			`end`
Rewrite for form generation. Added REST docu. Moved api to /api/*. 2012-09-20 12:08:02 +00:00
Init version. 2012-04-10 14:06:46 +00:00			`def create_omniauth`
Implemented to switch back to old user. 2014-09-15 20:55:06 +00:00
			`# in case, remove switched_from_user_id`
			`session[:switched_from_user_id] = nil`

Init version. 2012-04-10 14:06:46 +00:00			`auth = request.env['omniauth.auth']`

			`if !auth`
Corrected with rubocop cop 'Style/StringLiterals'. 2015-04-27 13:20:16 +00:00			`logger.info('AUTH IS NULL, SERVICE NOT LINKED TO ACCOUNT')`
Refactoring. 2012-04-18 08:33:42 +00:00
			`# redirect to app`
Added sso feature. 2013-02-17 18:28:32 +00:00			`redirect_to '/'`
Init version. 2012-04-10 14:06:46 +00:00			`end`
Refactoring. 2012-04-18 08:33:42 +00:00
			`# Create a new user or add an auth to existing user, depending on`
			`# whether there is already a user signed in.`
Fixed user creation one external login and not user already exists. 2012-04-18 12:36:30 +00:00			`authorization = Authorization.find_from_hash(auth)`
			`if !authorization`
Refactoring. 2012-04-18 08:33:42 +00:00			`authorization = Authorization.create_from_hash(auth, current_user)`
Init version. 2012-04-10 14:06:46 +00:00			`end`
Refactoring. 2012-04-18 08:33:42 +00:00
Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`if in_maintenance_mode?(authorization.user)`
Reworked admin maintenance area (needed for restarting screen). 2016-05-25 07:19:45 +00:00			`redirect_to '/#'`
			`return`
			`end`

Improved time of setting session user. 2013-09-30 01:41:45 +00:00			`# set current session user`
			`current_user_set(authorization.user)`

			`# log new session`
Fixed race condition in asset generation of session "/show". 2015-11-30 10:50:02 +00:00			`authorization.user.activity_stream_log('session started', authorization.user.id, true)`
Improved time of setting session user. 2013-09-30 01:41:45 +00:00
Added last login feature. 2012-10-18 08:10:12 +00:00			`# remember last login date`
Added login failed support. 2013-02-12 22:49:52 +00:00			`authorization.user.update_last_login`
Added last login feature. 2012-10-18 08:10:12 +00:00
Init version. 2012-04-10 14:06:46 +00:00			`# redirect to app`
Added sso feature. 2013-02-17 18:28:32 +00:00			`redirect_to '/'`
			`end`

Fixed issue #2128 - Route for /auth/failure is missing to show login failure messages form oauth provider (if request was technical ok - only login was not possible by oauth provider). 2018-07-17 08:35:51 +00:00			`def failure_omniauth`
			`raise Exceptions::UnprocessableEntity, "Message from #{params[:strategy]}: #{params[:message]}"`
			`end`

Added switch to user feature. 2013-10-07 03:38:07 +00:00			`# "switch" to user`
			`def switch_to_user`
			`# check user`
			`if !params[:id]`
			`render(`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`json: { message: 'no user given' },`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`status: :not_found`
Added switch to user feature. 2013-10-07 03:38:07 +00:00			`)`
			`return false`
			`end`

Fixed race condition in asset generation of session "/show". 2015-11-30 10:50:02 +00:00			`user = User.find(params[:id])`
Added switch to user feature. 2013-10-07 03:38:07 +00:00			`if !user`
			`render(`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`json: {},`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`status: :not_found`
Added switch to user feature. 2013-10-07 03:38:07 +00:00			`)`
			`return false`
			`end`

Fixes #3315 - nested "view from user perspective" yield to only being able to return to last viewed session 2020-12-17 06:14:17 +00:00			`# remember original user`
			`session[:switched_from_user_id] \|\|= current_user.id`
Implemented to switch back to old user. 2014-09-15 20:55:06 +00:00
Added switch to user feature. 2013-10-07 03:38:07 +00:00			`# log new session`
Fixed race condition in asset generation of session "/show". 2015-11-30 10:50:02 +00:00			`user.activity_stream_log('switch to', current_user.id, true)`
Added switch to user feature. 2013-10-07 03:38:07 +00:00
			`# set session user`
			`current_user_set(user)`

Avoid http redirects, they will be cached on some browsers. 2016-01-26 06:00:25 +00:00			`render(`
			`json: {`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`success: true,`
Avoid http redirects, they will be cached on some browsers. 2016-01-26 06:00:25 +00:00			`location: '',`
			`},`
			`)`
Added switch to user feature. 2013-10-07 03:38:07 +00:00			`end`

Implemented to switch back to old user. 2014-09-15 20:55:06 +00:00			`# "switch" back to user`
			`def switch_back_to_user`

Maintenance: Fixed typos in inline comments. 2019-07-31 08:23:48 +00:00			`# check if it's a switch back`
Fixes issue #2983 - HTTP 401 responses causing issues with Basic Authentication. 2021-02-04 08:28:41 +00:00			`raise Exceptions::Forbidden if !session[:switched_from_user_id]`
Implemented to switch back to old user. 2014-09-15 20:55:06 +00:00
Fixed race condition in asset generation of session "/show". 2015-11-30 10:50:02 +00:00			`user = User.lookup(id: session[:switched_from_user_id])`
Implemented to switch back to old user. 2014-09-15 20:55:06 +00:00			`if !user`
			`render(`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`json: {},`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`status: :not_found`
Implemented to switch back to old user. 2014-09-15 20:55:06 +00:00			`)`
			`return false`
			`end`

Maintenance: Fixed typos in inline comments. 2019-07-31 08:23:48 +00:00			`# remember current user`
Fixed activity log in switch back. 2014-09-21 13:19:28 +00:00			`current_session_user = current_user`
Implemented to switch back to old user. 2014-09-15 20:55:06 +00:00
			`# remove switched_from_user_id`
			`session[:switched_from_user_id] = nil`

			`# set old session user again`
			`current_user_set(user)`

Fixed activity log in switch back. 2014-09-21 13:19:28 +00:00			`# log end session`
Fixed race condition in asset generation of session "/show". 2015-11-30 10:50:02 +00:00			`current_session_user.activity_stream_log('ended switch to', user.id, true)`
Fixed activity log in switch back. 2014-09-21 13:19:28 +00:00
Avoid http redirects, they will be cached on some browsers. 2016-01-26 06:00:25 +00:00			`render(`
			`json: {`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`success: true,`
Avoid http redirects, they will be cached on some browsers. 2016-01-26 06:00:25 +00:00			`location: '',`
			`},`
			`)`
Implemented to switch back to old user. 2014-09-15 20:55:06 +00:00			`end`

Added auto restart of zammad after changing object attributes. 2016-05-26 21:40:10 +00:00			`def available`
			`render json: {`
			`app_version: AppVersion.get`
			`}`
			`end`

Added admin session management. 2013-07-26 21:45:16 +00:00			`def list`
Moved to user assets. 2013-10-01 18:31:03 +00:00			`assets = {}`
Added admin session management. 2013-07-26 21:45:16 +00:00			`sessions_clean = []`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`SessionHelper.list.each do \|session\|`
Improved error handling. 2017-07-24 07:06:15 +00:00			`next if session.data['user_id'].blank?`
Updated rubocop to latest version (0.59.2) and applied required changes. 2018-10-09 06:17:41 +00:00
Added admin session management. 2013-07-26 21:45:16 +00:00			`sessions_clean.push session`
Improved error handling. 2017-07-24 07:06:15 +00:00			`next if session.data['user_id']`
Updated rubocop to latest version (0.59.2) and applied required changes. 2018-10-09 06:17:41 +00:00
Improved error handling. 2017-07-24 07:06:15 +00:00			`user = User.lookup(id: session.data['user_id'])`
			`next if !user`
Updated rubocop to latest version (0.59.2) and applied required changes. 2018-10-09 06:17:41 +00:00
Improved error handling. 2017-07-24 07:06:15 +00:00			`assets = user.assets(assets)`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`end`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`render json: {`
			`sessions: sessions_clean,`
Updated rubocop - applied custom Layout/AlignHash style. 2018-12-19 17:31:51 +00:00			`assets: assets,`
Added admin session management. 2013-07-26 21:45:16 +00:00			`}`
			`end`

			`def delete`
Fixed race condition in asset generation of session "/show". 2015-11-30 10:50:02 +00:00			`SessionHelper.destroy(params[:id])`
Corrected with rubocop cop 'Style/HashSyntax'. 2015-04-27 13:42:53 +00:00			`render json: {}`
Added admin session management. 2013-07-26 21:45:16 +00:00			`end`
First version of showing uploaded logo. Need to be improved. 2014-11-17 10:39:35 +00:00
Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00			`private`

Fixes #2389 - Enhance LDAP login to not affect "failed logins". 2021-08-16 06:49:32 +00:00			`def authenticate_with_password`
			`auth = Auth.new(params[:username], params[:password])`
			`raise_unified_login_error if !auth.valid?`

			`session.delete(:switched_from_user_id)`
			`authentication_check_prerequesits(auth.user, 'session', {})`
			`end`

Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00			`def initiate_session_for(user)`
			`request.env['rack.session.options'][:expire_after] = 1.year if params[:remember_me]`
			`session[:persistent] = true`
			`user.activity_stream_log('session started', user.id, true)`
			`end`

Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00			`def config_frontend`

			`# config`
			`config = {}`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`Setting.select('name, preferences').where(frontend: true).each do \|setting\|`
Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00			`next if setting.preferences[:authentication] == true && !current_user`
Updated rubocop to latest version (0.59.2) and applied required changes. 2018-10-09 06:17:41 +00:00
Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00			`value = Setting.get(setting.name)`
			`next if !current_user && (value == false \|\| value.nil?)`
Updated rubocop to latest version (0.59.2) and applied required changes. 2018-10-09 06:17:41 +00:00
Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00			`config[setting.name] = value`
Applied RuboCop Style/BlockDelimiters to improve readability. 2017-10-01 12:25:52 +00:00			`end`
Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00
Maintenance: Fixed typos in inline comments. 2019-07-31 08:23:48 +00:00			`# remember if we can switch back to user`
Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00			`if session[:switched_from_user_id]`
			`config['switch_back_to_possible'] = true`
			`end`

			`# remember session_id for websocket logon`
			`if current_user`
Maintenance: Updated activerecord-session_store gem dependency to 2.0.0. 2021-03-10 08:07:57 +00:00			`config['session_id'] = session.id.public_id`
Refactoring: Splitted ApplicationController functionality into separat modules and concerns. 2017-03-09 11:44:51 +00:00			`end`

			`config`
			`end`
Feature: Single sign-on (SSO). 2019-09-05 14:02:31 +00:00
Applied rubocop Style/TrailingBlankLines. 2015-04-27 14:15:29 +00:00			`end`