Azure AD SAML and SLO logout error #41600
Labels
Administration/Auth/SSO
Enterprise SSO like SAML and JWT
.Escalation
Priority:P1
Security holes w/o exploit, crashing, setup/upgrade, login, broken common features, correctness
Type:Bug
Product defects
Describe the bug
Using AD SAML for SSO and Metabase 1.49.5.
You're presented with an error after signing off indicating the session index couldn't be located.
It doesn't prevent you from logging back in.
A quick video of a session logging on and off.
https://www.loom.com/share/485466cf8fb7486ca5f955a774d363c8
To Reproduce
I’m not sure if it’s a case of not calling the Logout URL configured for the app in Azure, possibly redirecting to different url configurations in Azure, completely logging out the session during the call to 'auth/sso/logout' so there’s no SessionIndex to reference by Azure, or something else.
From the decoded SAML traces
Part of the Login XML:
Logout XML:
Expected behavior
Log out from a session and not encounter the error.
Logs
No response
Information about your Metabase installation
Severity
P2
Additional context
No response
The text was updated successfully, but these errors were encountered: