[MGNLSSO-92] Infinite redirection loop after "Connection lost. Trying to reconnect..." message Created: 14/Oct/21  Updated: 17/Feb/23  Resolved: 27/Jan/22

Status: Closed
Project: Single Sign On
Component/s: None
Affects Version/s: None
Fix Version/s: 2.0.3, 3.0.0

Type: Task Priority: Critical
Reporter: Rubén Martín Romero Assignee: Evzen Fochr
Resolution: Fixed Votes: 0
Labels: blocked
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Attachments: PNG File Captura de pantalla 2021-12-03 a las 11.16.39.png     PNG File Captura de pantalla 2021-12-03 a las 11.17.53.png     PNG File screenshot-1.png    
Issue Links:
Cloners
Relates
relates to MAGNOLIA-8282 Bootstrapped role cannot be assigned ... Closed
relates to MGNLSSO-26 Look into using a securityCallback Closed
relates to MGNLSSO-93 URI permission conflict for anonymous... Closed
relates to DOCU-2369 Add note to SSO module page Closed
relation
is related to MGNLSSO-87 Infinite loop with Okta Closed
is related to MGNLSSO-98 Inconsistent behaviour after "Connect... Closed
Template:
Acceptance criteria:
Empty
Task DoR:
Empty
Release notes required:
Yes
Documentation update required:
Yes
Date of First Response:
Epic Link: User management
Sprint: AdminX 1, AdminX 2
Story Points: 8
Team: AdminX

 Description   

Login to a subscription -> logout -> login again leads to a too many redirections error

After debugging this problem I discovered that 2 different behaviors are happening based on the following use cases:

Consolidated additional info from the previous related ticket https://jira.magnolia-cms.com/browse/MGNLSSO-87 



 Comments   
Comment by Rubén Martín Romero [ 18/Oct/21 ]

Cloding this task, since is duplicated with CLOUD-940, which is already in progress by jalonso.

Comment by Jesus Alonso [ 18/Oct/21 ]

Hey rmartinr, this is a followup ticket as CLOUD-940 is just a temporary solution

Comment by Rubén Martín Romero [ 18/Oct/21 ]

Ahhh ok, got it. I saw exactly the same title and description in both and I thought that it was accidentally duplicated :S

Comment by Matt Rajkovic [ 24/Nov/21 ]

Reproduced again today on latest version (version 2 - created 16-11-2021) of Magnolia/subscription image. Happens only after reaching the "Connection lost. Trying to reconnect..." message after a longer period of inactivity.

Once the page is reloaded, endless redirect error is displayed. 

Comment by Matt Rajkovic [ 01/Dec/21 ]

We'll set up an instance without Jesus's patch and reach out to Okta for help. 

Comment by Jorge Franco [ 03/Dec/21 ]

In production, after one hour, I have seen these multiple redirections in the browser

Comment by Evzen Fochr [ 06/Jan/22 ]

According to description provided by @Rubén I will try to confirm that problem is in user rights.

If it is true we need to add sso-auth-functionality role to all groups that will allow access to '/.auth*' . This role should be defined in sso module

Generated at Mon Feb 12 10:51:02 CET 2024 using Jira 9.4.2#940002-sha1:46d1a51de284217efdcb32434eab47a99af2938b.