Wrong user name or password while using basic auth don't shown error and simply redirects to SSO page.

XMLWordPrintable

    • Type: Bug
    • Resolution: Duplicate
    • Priority: Low
    • None
    • Affects Version/s: 8.7.1
    • Component/s: Server - Authentication
    • None
    • 1
    • Severity 3 - Minor

      Issue Summary

      This is reproducible on Data Center: yes

      Steps to Reproduce

      1. Configure SSO with OpenID
      2. Keep both basic auth and SSO viewable on the login page.
      3. Try to do basic auth with either an inexistent user or wrong password.

      Expected Results

      The basic auth should show a "unknown username or password" error.

      Actual Results

      The system simply directly redirects to the SSO, which can confuse users specially if they don't have a user name and password on the SSO directory.

      The logs shows the same info as described in Authentication Filter intercepting POST calls into login.action 

      Workaround

      No workaround known at the moment.

              Assignee:
              Unassigned
              Reporter:
              Diego Zarpelon (Inactive)
              Votes:
              1 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: