You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Has anyone had any luck with setting up OIDC login with AzureAD?
The behaviour we're experiencing is after hitting the base URL of skooner, the application sends us through AAD OIDC, then redirects back to skooner with with invalid credentials and then it loops and redirects back to AAD, and keeps looping
We've set up an app in AAD with a redirect to the base url of our skooner app.
Just adding to this, it appears to be 401'ing on the k8 SelfSubjectRulesReview call (the testAuth portion) after successfully posting to OIDC & setting localStorage.authToken to the response token, due to the client then adding this on every request here on apiProxy.ts. Is this the intended behaviour?
Is this product still being developed? I'm having the same issue and not only are the "fixes" not working but they don't make any sense. I'm using Okta, not keycloak but it seems that there's no way to get the selfsubjectrulesreviews piece to not error and retry auth in a loop.
Has anyone had any luck with setting up OIDC login with AzureAD?
The behaviour we're experiencing is after hitting the base URL of skooner, the application sends us through AAD OIDC, then redirects back to skooner with with
invalid credentials
and then it loops and redirects back to AAD, and keeps loopingWe've set up an app in AAD with a redirect to the base url of our skooner app.
We've added the environment variables for
https://login.microsoftonline.com/<directory (tenant) id>/v2.0/.well-known/openid-configuration
<application (client) id>
<client secret>
We've added a cluster role per https://github.com/skooner-k8s/skooner/blob/master/provision/keycloak/skooner-oidc-patch.yaml
Logs sample:
Any ideas for troubleshooting are much appreciated.
Thank you
The text was updated successfully, but these errors were encountered: