Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-15065

HTTP 500 authentication error in CIBA workflow when user deny request

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 6.5.2, 7.0.0
    • Fix Version/s: 6.5.2.1, 7.0.0, 6.5.3
    • Component/s: oauth2
    • Labels:
    • Environment:
      Android 8.1.0
      Forgerock Authentication 2.2.0
    • Sprint:
      AM 2019.9 - Crane
    • Needs backport:
      Yes

      Description

      Bug description

      When user Deny request from CIBA, there is HTTP 500 error instead of 403 access_denied

      How to reproduce the issue

      1. follow https://docs.google.com/document/d/1HlPCIUDZj7uQsMXOTie_hSGzE3qaS0Rn4GJg_1KKfYc/edit to configure CIBA
      2. do CIBA workflow and when notification come to your phone, do CIBA polling request, there is "slow down" or "pending" status
      3. deny request on your phone
      4. do polling request
      Expected behaviour
      Response should be HTTP 403 access_denied
      Current behaviour
      There is HTTP 500 

{
    "error": "server_error",
    "error_description": "Error occurred during authentication"
}

with no output in debug on debug=error

        Attachments

          Issue Links

          is duplicated by

          Bug - A problem which impairs or prevents the functions of the product. OPENAM-15064 HTTP 500 authentication error in CIBA workflow when user do not have registered mobile device

          • Major - Major loss of function.
          • Resolved

            Activity

              People

              • Assignee:
                peter.major Peter Major [X] (Inactive)
                Reporter:
                lubomir.mlich Ľubomír Mlích
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: