Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-18325

Authenticating through a SAML portal when already logged in will fail due to a CSRF error

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: 6.6.5
    • Fix Version/s: 6.12.0
    • Component/s: None
    • Labels:

      Description

      Steps to reproduce (using onelogin, but same issue occurs for other saml providers):

      -Integrate OneLogin SAML with Artifactory

      -in the OneLogin SAML portal (https://matthewtest-dev.onelogin.com/portal), log in by clicking on the Artifactory App icon.

      -try logging in again with the portal and see that the request fails:

      {
      "errors" : [

      { "status" : 403, "message" : "Request was blocked. Please refer to access.log" }

      ]
      }

      $ARTIFACTORY_HOME/logs/access.log :

      2019-01-21 20:37:06,687 [DENIED DISAPPROVE] Cross-Site Request Forgery for j2670936@nwytg.com

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                alexeiv Alexei Vainshtein
                Reporter:
                mattheww Matthew Wang
                Assigned QA:
                Andrey Tashlitsky
              • Votes:
                8 Vote for this issue
                Watchers:
                12 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: