Uploaded image for project: 'SAML for Atlassian Data Center'
  1. SAML for Atlassian Data Center
  2. SAMLDC-37

If the authenticating user comes from a remote directory, and the directory is inaccessible the user will see a 'We can't log you in right now error'

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Medium Medium
    • None
    • 2.0.2
    • None

      When authenticating using SAML, if the user logging in comes from a remote directory (for example an LDAP or Crowd directory), and the directory is can't be reach by the application, the user will be unable to log in, and see the 'We can't log you in right now message'.

      The logs will say:

      com.atlassian.plugins.authentication.impl.web.usercontext.AuthenticationFailedException: Received SAML assertion for user UserFromRemote, but the user doesn't exist in the product
        at com.atlassian.plugins.authentication.impl.web.usercontext.impl.SalPrincipalResolver.resolvePrincipal(SalPrincipalResolver.java:34)
        at com.atlassian.plugins.authentication.impl.web.saml.SamlConsumerServlet.doPost(SamlConsumerServlet.java:92)
        at javax.servlet.http.HttpServlet.service(HttpServlet.java:648)

      Expected:

      • the user should be able to log in using the user details cached in the product if available

            [SAMLDC-37] If the authenticating user comes from a remote directory, and the directory is inaccessible the user will see a 'We can't log you in right now error'

              Unassigned Unassigned
              lpater Lukasz Pater
              Affected customers:
              2 This affects my team
              Watchers:
              6 Start watching this issue

                Created:
                Updated: