Project

General

Profile

Actions

Bug #21024

open

Oauth login error are not logged

Added by François ARMAND 2 months ago. Updated about 2 months ago.

Status:
Pending release
Priority:
N/A
Target version:
Severity:
UX impact:
User visibility:
Effort required:
Priority:
0

Description

If you have an error when login with OIDC/Oauth2, that the login is correct on the IdP, but that rudder does not know the user (missing from rudder-user.xml for ex), then you get a blank "401 unauthorized" page in place of rudder login page:

Moreover, the login error is only logged at TRACE level:

[2022-04-25 12:24:23+0200] TRACE org.springframework.security.oauth2.client.web.OAuth2LoginAuthenticationFilter - Failed to process authentication request
bootstrap.liftweb.RudderProviderManager$1: User with username 'francois@rudder.io' was not found

The display part may need an adaptation between 6.2 and 7.x, even if the backend will likely be the same.


Files

clipboard-202204251220-rshxo.png (32.8 KB) clipboard-202204251220-rshxo.png François ARMAND, 2022-04-25 12:20
Actions #1

Updated by François ARMAND 2 months ago

  • Status changed from New to In progress
  • Assignee set to François ARMAND
Actions #2

Updated by François ARMAND 2 months ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from François ARMAND to Nicolas CHARLES
  • Pull Request set to https://github.com/Normation/rudder-plugins/pull/467
Actions #3

Updated by François ARMAND 2 months ago

  • Status changed from Pending technical review to Pending release
Actions #4

Updated by François ARMAND about 2 months ago

  • Subject changed from Oauth login error are not logged nor displayed on rudder login screen to Oauth login error are not logged

See #21074 for the error display on the login page.

Actions

Also available in: Atom PDF