Some background: I’m using ActiveDirectory to authenticate users in my SSO implementation. This all works fine but if a user tries and fails to authenticate I’d like to redirect them to some page on the forums that doesn’t let them see anything.
This is vital in my case: since I have
login required set to
true then currently redirecting them back to any page on Discourse causes them to be sent to
/session/sso again (and the loop repeats ad infinitum).
Are there any solutions that don’t involve me having to host my own page (I don’t want to show the URL of my SSO implementation in the unauthenticated user’s browser if I can possibly help it)? I suppose I’m looking for a ‘safe’ page on Discourse that non-authenticated users can see.
EDIT: the problem is really down to unauthorized users. See my comment below.