Uploaded image for project: 'OpenId Connect'
  1. OpenId Connect
  2. OIDC-238

Improve error reporting when the user is not in oidc.groups.allowed

    XMLWordPrintable

Details

    • Improvement
    • Resolution: Unresolved
    • Major
    • None
    • 2.18.1
    • None
    • Unknown

    Description

      When the user which will log in are not the group specified by oidc.groups.allowed, he will see only an internal error 500. And his session create on the IDP will not destroyed, this can be an security problem. See more here.

      Attachments

        Activity

          People

            Unassigned Unassigned
            mdc_xwiki mdc
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated: