Loading...

XML

Word

Printable

Type: Bug
Resolution: Done
Priority: Major
Fix Version/s: RH-SSO-7.5.3
Affects Version/s: RH-SSO-7.5.1
Component/s: Server
Labels:
- rh-sso-release-candidate

Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Link:
RHSSO-1974
QE Test Coverage:
+
Git Pull Request:
https://github.com/keycloak/keycloak/pull/10662, https://gitlab.cee.redhat.com/keycloak/keycloak-prod/-/merge_requests/152
Steps to Reproduce:
Hide

Attempt to login with invalid username (non-existing user)

After the authentication error, perform a login with configured external identity provider.

In the Events tab LOGIN_ERROR event details show the username from the invalid user (dummyuser) and the LOGIN event details show the same invalid username (dummyuser) instead of the correct username of the existing user. The correct username is shown under the "identity_provider_identity", but username shows incorrect user (dummyuser):

2/22/22 10:21:05 AM LOGIN Client app-authz-jee-vanilla User 6725aeb3-7df5-4515-b968-9bb274a38a0b IP Address 127.0.0.1 Details identity_provider github redirect_uri http://localhost:8080/app-authz-vanilla consent no_consent_required identity_provider_identity correctUsername code_id 096d5400-a12d-4200-a793-5384942b595f username dummyuser 2/22/22 10:20:54 AM LOGIN_ERROR Client app-authz-jee-vanilla User IP Address 127.0.0.1 Error invalid_user_credentials Details auth_method openid-connect auth_type code redirect_uri http://localhost:8080/app-authz-vanilla code_id 096d5400-a12d-4200-a793-5384942b595f username dummyuser
Show
Attempt to login with invalid username (non-existing user) After the authentication error, perform a login with configured external identity provider. In the Events tab LOGIN_ERROR event details show the username from the invalid user (dummyuser) and the LOGIN event details show the same invalid username (dummyuser) instead of the correct username of the existing user. The correct username is shown under the "identity_provider_identity", but username shows incorrect user (dummyuser): 2/22/22 10:21:05 AM LOGIN Client app-authz-jee-vanilla User 6725aeb3-7df5-4515-b968-9bb274a38a0b IP Address 127.0.0.1 Details identity_provider github redirect_uri http: //localhost:8080/app-authz-vanilla consent no_consent_required identity_provider_identity correctUsername code_id 096d5400-a12d-4200-a793-5384942b595f username dummyuser 2/22/22 10:20:54 AM LOGIN_ERROR Client app-authz-jee-vanilla User IP Address 127.0.0.1 Error invalid_user_credentials Details auth_method openid-connect auth_type code redirect_uri http: //localhost:8080/app-authz-vanilla code_id 096d5400-a12d-4200-a793-5384942b595f username dummyuser

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

The login events in the Event tab show incorrect user name.

mentioned on

Merge request - [#10616] Incorrect username logged for federated accounts (#10662)

Solved by commit 4add527a8dd833e2240ad6704185b1bfd3810468.

Assignee:: Peter Skopek

Reporter:: Maria Vassileva

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: 2022/03/14 1:16 PM

Updated:: 2023/02/27 4:24 PM

Resolved:: 2022/08/26 3:24 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates

Hide