You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
When a default authentication script set for some OIDC client in oxTrust, it's the script's inum what is now written to "oxAuthDefaultAcrValues" attribute of the script's LDAP entry - but while serving OIDC flow oxAuth still seem to try to look up the script as if it was its acr_value
Steps To Reproduce
Enable "basic" authentication script
Set it as a default acr for some OIDC client
Make sure no other auth method may take precedence for this client
Start the flow for the client without specifying which acr to use explicitly
Expected behavior
Unless any override happens oxAuth engages the script set as default acr for the client
Actual behavior
Flow fails with an error page. In oxauth.log next lines appear:
@aliaksander-samuseu there must be mis-understanding. oxAuthDefaultAcrValues must hold script name, not inum. Closing it as invalid. Please open bug on UI if UI sets inum instead of name.
Description
When a default authentication script set for some OIDC client in oxTrust, it's the script's
inum
what is now written to "oxAuthDefaultAcrValues" attribute of the script's LDAP entry - but while serving OIDC flow oxAuth still seem to try to look up the script as if it was its acr_valueSteps To Reproduce
Expected behavior
Unless any override happens oxAuth engages the script set as default acr for the client
Actual behavior
Flow fails with an error page. In oxauth.log next lines appear:
The text was updated successfully, but these errors were encountered: