If the authenticating user comes from a remote directory, and the directory is inaccessible the user will see a 'We can't log you in right now error'

XMLWordPrintable

    • Type: Bug
    • Resolution: Unresolved
    • Priority: Medium
    • None
    • Affects Version/s: 2.0.2
    • Component/s: None

      When authenticating using SAML, if the user logging in comes from a remote directory (for example an LDAP or Crowd directory), and the directory is can't be reach by the application, the user will be unable to log in, and see the 'We can't log you in right now message'.

      The logs will say:

      com.atlassian.plugins.authentication.impl.web.usercontext.AuthenticationFailedException: Received SAML assertion for user UserFromRemote, but the user doesn't exist in the product
        at com.atlassian.plugins.authentication.impl.web.usercontext.impl.SalPrincipalResolver.resolvePrincipal(SalPrincipalResolver.java:34)
        at com.atlassian.plugins.authentication.impl.web.saml.SamlConsumerServlet.doPost(SamlConsumerServlet.java:92)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:648)

      Expected:

      • the user should be able to log in using the user details cached in the product if available

            Assignee:
            Unassigned
            Reporter:
            Lukasz Pater
            Votes:
            3 Vote for this issue
            Watchers:
            8 Start watching this issue

              Created:
              Updated: