Uploaded image for project: 'Red Hat build of Keycloak'
  1. Red Hat build of Keycloak
  2. RHBK-1682

[GHI#29385] Restart authentication event type is not generated

XMLWordPrintable

    • False
    • Hide

      None

      Show
      None
    • False

      Before reporting an issue

      [X] I have read and understood the above terms for submitting issues, and I understand that my issue may be closed without action if I do not follow them.

      Area

      authentication

      Describe the bug

      When a login performs a restart of the authentication process calling the restart endpoint:

      ```
      http://localhost:8080/realms/otp/login-actions/restart?execution=e309dd92-423b-43d3-b5ae-08d7f6d9f455&client_id=account-console&tab_id=P4sW0009nm0
      ```

      There is no success event generated for the restart.

      Version

      24.0.4

      Regression

      [ ] The issue is a regression

      Expected behavior

      A success restart event is registered.

      Actual behavior

      No event is registered.

      How to Reproduce?

      1. Enable the realm user events: Realm settings -> Events -> User events settings -> Save events(On) -> Verify Restart authentication event type is saved.
      2. Enforce new users to configure OTP: Authentication -> Required actions -> Configure OTP -> Set as default action(set to On)
      3. Create a new user and set the credentials for the new user.
      4. Login to the out of the box account client using newly created user: http://localhost:8080/realms/otp/account/
      5. Enter user name and passwword for the newly created user when redirected to the login page: http://localhost:8080/realms/otp/protocol/openid-connect/auth?client_id=account-console&redirect_uri=http%3A%2F%2Flocalhost%3A8080%2Frealms%2Fotp%2Faccount%2F%23%2F&state=9aea5066-bb85-45b6-86ec-46653b842e2b&response_mode=fragment&response_type=code&scope=openid&nonce=5cc80fd2-f911-4eb9-8aed-029b7504d758&code_challenge=bnC3C-uD4v1JZr8KLTAvfxkNsferlXoF_lZjrt5BXLk&code_challenge_method=S256
      6. The user is then redirected to the OTP page to provide their one time password: http://localhost:8080/realms/otp/login-actions/authenticate?execution=e309dd92-423b-43d3-b5ae-08d7f6d9f455&client_id=account-console&tab_id=P4sW0009nm0
      7. Modify the url by relacing "authenticate" with "restart" and then hit enter: http://localhost:8080/realms/otp/login-actions/restart?execution=e309dd92-423b-43d3-b5ae-08d7f6d9f455&client_id=account-console&tab_id=P4sW0009nm0
      8. This should redirect the user login page as expected. However, the event type Restart authentication is not generated in the realm user events even though the event type Restart authentication is available in the realm user events settings.

      Anything else?

      No response

            Unassigned Unassigned
            pvlha Pavel Vlha
            Keycloak Core Clients
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: