Provide more meaningful message to SAML responses

XMLWordPrintable

    • Type: Suggestion
    • Resolution: Answered
    • Priority: Low
    • None
    • Affects Version/s: None
    • Component/s: None
    • None

      Confluence provides a very generic message saying "Something went wrong" when the SAML response is anything other than successful authentication.

      Example: Confluence received the below response to an unsuccessful login attempt.

      2020-12-21 02:08:59,984 ERROR [http-nio-8090-exec-17] [impl.web.filter.ErrorHandlingFilter] doFilter Received invalid SAML response: The status code of the Response was not Success, was urn:oasis:names:tc:SAML:2.0:status:Responder -> Access to this resource is not currently available to you. Please contact your supervisor if you have questions.
 -- referer: https://sso.davita.com/ | url: /plugins/servlet/samlconsumer | traceId: 6f12f9ada2ff2d85 | userName: anonymous
com.atlassian.plugins.authentication.impl.web.saml.provider.InvalidSamlResponse: Received invalid SAML response: The status code of the Response was not Success, was urn:oasis:names:tc:SAML:2.0:status:Responder -> Access to this resource is not currently available to you. Please contact your supervisor if you have questions.
	at com.atlassian.plugins.authentication.impl.web.saml.provider.impl.OneloginJavaSamlProvider.lambda$extractSamlResponse$1(OneloginJavaSamlProvider.java:91)
...

      To this, the page saying "Something went wrong" (screenshot attached) was presented to the user which is not very useful.

      Suggestion: We can add the ability to customize the error page to something more meaningful. 

        1. conf image.png
          conf image.png
          232 kB

            Assignee:
            Unassigned
            Reporter:
            Shilpa R (Inactive)
            Votes:
            1 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: