Uploaded image for project: 'Artifactory Binary Repository'
  1. Artifactory Binary Repository
  2. RTFACT-18325

Authenticating through a SAML portal when already logged in will fail due to a CSRF error

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Normal
    • Resolution: Fixed
    • Affects Version/s: 6.6.5
    • Fix Version/s: 6.12.0
    • Component/s: None
    • Labels:

      Description

      Steps to reproduce (using onelogin, but same issue occurs for other saml providers):

      -Integrate OneLogin SAML with Artifactory

      -in the OneLogin SAML portal (https://matthewtest-dev.onelogin.com/portal), log in by clicking on the Artifactory App icon.

      -try logging in again with the portal and see that the request fails:

      {
      "errors" : [

      { "status" : 403, "message" : "Request was blocked. Please refer to access.log" }

      ]
      }

      $ARTIFACTORY_HOME/logs/access.log :

      2019-01-21 20:37:06,687 [DENIED DISAPPROVE] Cross-Site Request Forgery for j2670936@nwytg.com

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              alexeiv Alexei Vainshtein
              Reporter:
              mattheww Matthew Wang
              Votes:
              8 Vote for this issue
              Watchers:
              12 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: