Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

unable to locate IDP authentication form submit URL #579

Open
babanjot opened this issue Nov 18, 2020 · 2 comments
Open

unable to locate IDP authentication form submit URL #579

babanjot opened this issue Nov 18, 2020 · 2 comments

Comments

@babanjot
Copy link

babanjot commented Nov 18, 2020

Hello team
I am using keycloak as an identity broker and google as an Identity Provider. While using saml2aws for AWS CLI login, I am facing this issue
unable to locate IDP authentication form submit URL
I have used IDP initiated URL as the URL to set up my profile.
Here is the verbose output of my login

babanjot@babanjot:~/Downloads$ saml2aws --verbose login
DEBU[0000] Running                                       command=login
DEBU[0000] check if Creds Exist                          command=login
DEBU[0000] Expand                                        name=/home/babanjot/.aws/credentials pkg=awsconfig
DEBU[0000] resolveSymlink                                name=/home/babanjot/.aws/credentials pkg=awsconfig
DEBU[0000] ensureConfigExists                            filename=/home/babanjot/.aws/credentials pkg=awsconfig
Using IDP Account default to access KeyCloak https://**********t/auth/realms/aws-accounts-sso/protocol/saml/clients/***********
To use saved password just hit enter.
? Username babanjot@tothenew.com
? Password **********

DEBU[0013] building provider                             command=login idpAccount="account {\n  URL: https://***********t/auth/realms/aws-accounts-sso/protocol/saml/clients/**********\n  Username: babanjot@gmail.com\n  Provider: KeyCloak\n  MFA: Auto\n  SkipVerify: false\n  AmazonWebservicesURN: urn:amazon:webservices\n  SessionDuration: 3600\n  Profile: saml\n  RoleARN: \n  Region: \n}"
Authenticating as babanjot@tothenew.com ...
DEBU[0015] HTTP Req                                      URL="https://accounts.google.com/signin/v1/lookup" http=client method=POST
DEBU[0015] HTTP Res                                      Status="200 OK" http=client
unable to locate IDP authentication form submit URL
@rohanpower
Copy link

Getting the same issue using AzureAD as IdP

@GMartinez-Sisti
Copy link

It's a missleading error.

I got that error after I changed my password while using --skip-prompt. After performing a login and specifying the password I confirmed that the keychain entry was updated (MacOS) and it started working again without the need to input the password.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

3 participants