Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-15065

HTTP 500 authentication error in CIBA workflow when user deny request

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 6.5.2, 7.0.0
    • Fix Version/s: 6.5.2.1, 7.0.0, 6.5.3
    • Component/s: oauth2
    • Labels:
    • Environment:
      Android 8.1.0
      Forgerock Authentication 2.2.0
    • Sprint:
      AM 2019.9 - Crane
    • Needs backport:
      Yes

      Description

      Bug description

      When user Deny request from CIBA, there is HTTP 500 error instead of 403 access_denied

      How to reproduce the issue

      1. follow https://docs.google.com/document/d/1HlPCIUDZj7uQsMXOTie_hSGzE3qaS0Rn4GJg_1KKfYc/edit to configure CIBA
      2. do CIBA workflow and when notification come to your phone, do CIBA polling request, there is "slow down" or "pending" status
      3. deny request on your phone
      4. do polling request
      Expected behaviour
      Response should be HTTP 403 access_denied
      
      Current behaviour
      There is HTTP 500 
      
      {
          "error": "server_error",
          "error_description": "Error occurred during authentication"
      }
      
      with no output in debug on debug=error
      
      

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                peter.major Peter Major [X] (Inactive)
                Reporter:
                lubomir.mlich Ľubomír Mlích
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: