Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Duplicate
    • Affects Version/s: 13.5.0, 13.5.1
    • Fix Version/s: None
    • Component/s: None
    • Labels:
    • Sprint:
      AM Sustaining Sprint 41, AM Sustaining Sprint 42, AM Sustaining Sprint 43
    • Story Points:
      5
    • Needs backport:
      No
    • Support Ticket IDs:
    • Needs QA verification:
      Yes
    • Functional tests:
      No
    • Are the reproduction steps defined?:
      Yes but I used my own steps. (If so, please add them in a new comment)

      Description

      OAuth2 Account Mapping Failing after applying the patch for OPENAM-9597

      I also tested this within a 13.5.1 environment which has the OPENAM-9597 fix implemented in. This also failed.

       

      Reproduction steps

      --------------------------

      1. Install vanilla OpenAM 13.5.
      2. Set email address on existing demo user to match test Google account.
      3. Create authentication module:

      .\ssoadm.bat create-auth-instance -e / -t OAuth -m Google -u amadmin -f .\pwd.txt
      .\ssoadm.bat update-auth-instance -e / -m Google -D <patch to module config file> -u amadmin -f .\pwd.txt

      4. Test authentication via Google module:

      http://openam.example.com:8080/openam/?authIndexType=module&authIndexValue=Google

      5. Process should work, and correctly match to existing demo user.
      6. Stop Tomcat.
      7. Implement security patch OPENAM-sec-201608-v1350-CAS.
      8. Restart Tomcat.
      9. Test authentication via Google module:

      http://openam.example.com:8080/openam/?authIndexType=module&authIndexValue=Google

      10. Process should still work, and correctly match to existing demo user.
      11. Stop Tomcat.
      12. Implement patch for OPENAM-9597 
      13. Restart Tomcat.
      14. Test authentication via Google module:

      http://openam.example.com:8080/openam/?authIndexType=module&authIndexValue=Google
      15. Authentication process fails.

       

       

        Attachments

          Activity

            People

            • Assignee:
              adam.heath Adam Heath
              Reporter:
              jdewer James Dewer
            • Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: