Fix SAML login with OpenAM #17785

pawit-metabase · 2021-09-07T10:33:02Z

OpenAM SAMLResponse contains "\r\n" every 76 characters leading our SAML code to think it's not base64-encoded.

Fix by relaxing our valid base64 check to ignore all spaces.

OpenAM SAMLResponse contains "\r\n" every 76 characters leading our SAML code to think it's not base64-encoded. Fix by relaxing our valid base64 check to ignore all spaces. Fixes #15567

codecov · 2021-09-07T10:59:20Z

Codecov Report

Merging #17785 (dcb7641) into master (9a9a987) will increase coverage by 0.01%.
The diff coverage is 100.00%.

@@            Coverage Diff             @@
##           master   #17785      +/-   ##
==========================================
+ Coverage   62.90%   62.91%   +0.01%     
==========================================
  Files        1630     1631       +1     
  Lines       66581    66591      +10     
  Branches     7304     7307       +3     
==========================================
+ Hits        41882    41897      +15     
+ Misses      21510    21504       -6     
- Partials     3189     3190       +1

Flag	Coverage Δ
back-end	`85.23% <100.00%> (-0.01%)`	⬇️
front-end	`38.91% <ø> (+0.04%)`	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
src/metabase/util.clj	`89.01% <100.00%> (+0.06%)`	⬆️
src/metabase/api/pulse.clj	`83.08% <0.00%> (-0.72%)`	⬇️
...ontend/src/metabase/components/CollapseSection.jsx
...nd/src/metabase/components/CollapseSection.info.js
...ase/components/CollapseSection/CollapseSection.jsx	`75.00% <0.00%> (ø)`
...mponents/CollapseSection/CollapseSection.styled.js	`100.00% <0.00%> (ø)`
...components/CollapseSection/CollapseSection.info.js	`0.00% <0.00%> (ø)`

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 9a9a987...dcb7641. Read the comment docs.

OpenAM SAMLResponse contains "\r\n" every 76 characters leading our SAML code to think it's not base64-encoded. Fix by relaxing our valid base64 check to ignore all spaces. Fixes #15567

OpenAM SAMLResponse contains "\r\n" every 76 characters leading our SAML code to think it's not base64-encoded. Fix by relaxing our valid base64 check to ignore all spaces. Fixes #15567 Co-authored-by: pawit-metabase <pawit@metabase.com>

Fix SAML login with OpenAM

dcb7641

OpenAM SAMLResponse contains "\r\n" every 76 characters leading our SAML code to think it's not base64-encoded. Fix by relaxing our valid base64 check to ignore all spaces. Fixes #15567

pawit-metabase requested a review from camsaul September 7, 2021 10:33

camsaul approved these changes Sep 7, 2021

View reviewed changes

rlotun added the backport Automatically create PR on current release branch on merge label Sep 7, 2021

pawit-metabase merged commit e10adcd into master Sep 8, 2021

pawit-metabase deleted the fix-openam-saml-login branch September 8, 2021 03:33

github-actions bot mentioned this pull request Sep 8, 2021

🤖 backported "Fix SAML login with OpenAM" #17797

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix SAML login with OpenAM #17785

Fix SAML login with OpenAM #17785

pawit-metabase commented Sep 7, 2021 •

edited

codecov bot commented Sep 7, 2021 •

edited

Fix SAML login with OpenAM #17785

Fix SAML login with OpenAM #17785

Conversation

pawit-metabase commented Sep 7, 2021 • edited

codecov bot commented Sep 7, 2021 • edited

Codecov Report

pawit-metabase commented Sep 7, 2021 •

edited

codecov bot commented Sep 7, 2021 •

edited