Synchronizing avatars via SSO

dabaer · March 6, 2015, 9:28am

I have SSO currently functioning retrieving login data from our main site, however I am having issues when trying to synchronize user avatars, as discourse caches them.

It is unclear how sync actually works as the documentation has no information on implementation, but the problem may also be that when a user changes their avatar on our side, the url does not change.

When using the sync endpoint discourse would presumably re cache, but the documentation does not explain that either.

What is the correct usage of the sync endpoint (GET or POST), and how does discourse handle avatars when syncing?

dabaer · March 6, 2015, 9:41am

Upon further inspection I discovered the force avatar update argument, which I will test this morning.

dabaer · March 6, 2015, 2:37pm

Alright, nothing I have tried so far has worked. Based off of feedback in other posts about the same issue, I cannot get any results as they have. My code is as follows:

$payload = base64_encode(http_build_query($query = [
    'nonce' => $nonce,
    'external_id' => $_SESSION['uid'],
    'email' => $_SESSION['email'],
    'name' => $user['information']['name'],
    'username' => $_SESSION['username'],
    'avatar_force_update' => 1,
    'avatar_url' => 'http://example.com/data/avatar/'.$_SESSION['uid'].'.gif'
]));
$sig = hash_hmac("sha256", $payload, $secret);
$q = http_build_query([ 'sso' => $payload, 'sig' => $sig ]);
header("Location: http://forum.example.com/session/sso_login?$q");

EDIT: I decided to kaibosh the POST sync endpoint twattery and try to update it on login. A bit roundabout when we could just ping discourse when they change their avatar, but it’ll have to do.

EDIT 2: It is still broken however.

dabaer · April 26, 2015, 2:04am

I’ll just give this a bump, I’m still having this issue and cannot find any clear documentation on the subject.

Grex315 · April 26, 2015, 5:59pm

for me the avatar_force_update succeeded when stated like so.

'avatar_force_update' => 'true',

This forced the end users avatar to update on each login based off the URL provided in the sso payload.

I am using SSO with a WordPress site and the official WordPress Discourse Plugin. I just added that line in the array.

Stackfish · January 23, 2016, 5:15pm

I’m having trouble with synchronizing my avatars. My c# payload includes

&avatar_force_update=1&avatar_url=http://…

there seems to be some confusion around the value for avatar_force_update, can anyone clarify if its 1 or true?

Thanks

Falco · January 23, 2016, 5:24pm

True.

github.com

discourse/discourse/blob/f66feb0ad09bf47ada237bf864df1f5f0372eb67/spec/models/discourse_single_sign_on_spec.rb#L217


      
                # Deliberately not setting avatar_url.
          
                user = sso.lookup_or_create_user(ip_address)
                expect(user).to_not be_nil
              end
          
              it "deal with no avatar_force_update passed as a boolean" do
                FileHelper.stubs(:download).returns(logo)
          
                sso.avatar_url = "http://example.com/a_different_image.png"
                sso.avatar_force_update = true
          
                user = sso.lookup_or_create_user(ip_address)
                expect(user).to_not be_nil
              end
            end
          end

Topic		Replies	Views
SSO avatar not updating when using URLs from my site SSO	3	1562	October 16, 2018
WP Discourse SSO force avatar update problem WordPress	1	742	June 27, 2018
SSO avatar does not refresh as expected SSO	1	1265	October 21, 2019
Reset avatar in sync SSO SSO	4	2154	March 3, 2020
SSO avatar sync not working due to incorrect HTTP HEAD response SSO	14	1627	December 1, 2017

Synchronizing avatars via SSO

Related topics