-
Notifications
You must be signed in to change notification settings - Fork 2
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Wrong error when nonexisting user is queried on proxy_authz
endpoint
#561
Comments
@baszoetekouw
These error codes corresponds with the following messages from the locales:
If the user is not a member of the correct CO, then |
Adjusting |
We have seen a number of occurrences where users tried to log in directly to a service (EduVPN in the example below) without registering at SBS first. This causes them to be registered at EduTEAMS like normal, and then EduTEAMS querying the
proxy_authz
endpoint with the uid that is stil unknown in SRAM at that point. The flow is then interrupted and the user is shown the following message:Curiously enough, this error message seems to be
sfo.info1
. I don't understand what this has to do with SFO?The logs show this reponse:
It seems that the client page
ServiceDenied.jsx
does not handlestatus=USER_UNKNOWN
correctly. Strangely enough, this page only seems to output SFO errors, even though theproxy_auth
endpoint handles a number of different errors.We should instead give the same message that we show to people who are not a member of the correct CO.
The text was updated successfully, but these errors were encountered: