Uploaded image for project: 'MidPoint'
  1. MidPoint
  2. MID-6090

Authentication Channel inaccessible due to 403 error

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 4.1
    • Fix Version/s: 4.1
    • Component/s: None
    • Labels:
    • Environment:

      Flexible Authentication

      2 Channels:

      • SAML
      • Emergency (Basic)
    • Subscription:
      Active subscription

      Description

      Scenario:

      • Login via regular SAML channel (SSO)
      • User decides he wants to change to another account without SSO.
      • calling: https://curms-e.rsint.net/midpoint/auth/emergency
      • getting: 403 Forbidden
      • hitting "Logout" button on the Forbidden page
      • still getting: 403 Forbidden
      • hitting "Home" button
      • back to Dashboard still logged in.
      • click on Username in the top-right corner,
      • hitting Logout
      • finally getting the login-page for the secondary channel.

      Proposal:

      a) Automatically logout the user when /auth is called in logged-in context

      or

      b) still show 403 but make the Logout button on that page work..

        Attachments

          Activity

            People

            Assignee:
            hoffm_ma Martin Hoffmann
            Reporter:
            hoffm_ma Martin Hoffmann
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: