Details
-
Bug
-
Status: Closed
-
Resolution: Fixed
-
7.0.X, 7.1.X, 7.2.X, 7.3.X, Master
-
7.3.x, 7.2.x, 7.1.x
-
Committed
-
5
-
AppSec Iteration 56
Description
The user is not able to login using OpenID Connect configured with Microsoft Azure because default timeout connection it may be long enough.
Steps to reproduce:
- Configure an OpenID Connect Provider with Microsoft Azure
- Go to Control Panel -> Configuration -> System Settings -> SSO -> OpenID Connect Provider and add a new configuration (at the moment of this ticket creation we have a test environment available here)
- On Control Panel -> Configuration -> System Settings -> SSO -> OpenID Connect check Enabled and save
- Try to login using Open ID
Expected behavior:
User can log in
Actual behavior
User get an Error
More info:
- Comments on: LPS-127037
- Comments on: LPSP-402
—
To solve this issue, a new property has been added in the Configuration: SSO - OpenID Connect Provider: Token Connection Timeout in Milliseconds, it sets the amount of time to wait (in milliseconds) when establishing a connection to validate the token before timing out; we have set 1000ms as default to avoid this problem.
Attachments
Issue Links
- fixes
-
LPS-132369 Cannot login using OpenID Connect: Timeout error
-
- Reviewed
-
- relates
-
LPS-134142 OpenIdConnect getter: Fix typo
- Closed
- split from
-
LPS-127037 Error when using OpenID Connect to request userinfo from Azure
- Closed