Uploaded image for project: 'OpenIDM'
  1. OpenIDM
  2. OPENIDM-15245

A user with a userName different from connected social provider subject id cannot login via social provider

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Blocker
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 7.0.0
    • Component/s: None
    • Target Version/s:
    • Verified Version/s:

      Description

      Currently if we set up a Registration tree (see attached screenshot) where an already existing user tries to register via a social provider, the tree recognizes the user with the same email already exists, asks for credentials (social if user is already connected to one or more social providers and local i.e. username and password when no social providers are connected), then connects the social provider with the user, then that user will not be able to log in with the connected social account because the userName from the social provider does not match the userName of the user the social account is connected to.

      It fails on Increment Login Count =>

      EXCEPTION
      org.forgerock.openam.auth.node.api.NodeProcessException: No object to increment
      	at org.forgerock.openam.auth.nodes.IncrementLoginCountNode.lambda$process$1(IncrementLoginCountNode.java:91)
      	at java.base/java.util.Optional.orElseThrow(Optional.java:408)
      	at org.forgerock.openam.auth.nodes.IncrementLoginCountNode.process(IncrementLoginCountNode.java:91)
      	at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:137)
      	at org.forgerock.openam.auth.trees.engine.AuthTreeExecutor.process(AuthTreeExecutor.java:179)
      	at org.forgerock.openam.core.rest.authn.trees.AuthTrees.processTree(AuthTrees.java:461)
      	at org.forgerock.openam.core.rest.authn.trees.AuthTrees.evaluateTreeAndProcessResult(AuthTrees.java:278)
      	at org.forgerock.openam.core.rest.authn.trees.AuthTrees.invokeTree(AuthTrees.java:270)
      	at org.forgerock.openam.core.rest.authn.RestAuthenticationHandler.authenticate(RestAuthenticationHandler.java:228)
      	at org.forgerock.openam.core.rest.authn.http.AuthenticationServiceV1.authenticate(AuthenticationServiceV1.java:157)
      	at jdk.internal.reflect.GeneratedMethodAccessor112.invoke(Unknown Source)
      	at java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
      	at java.base/java.lang.reflect.Method.invoke(Method.java:566)
      	at org.forgerock.openam.http.annotations.AnnotatedMethod.invoke(AnnotatedMethod.java:81)
      	at org.forgerock.openam.http.annotations.Endpoints$1.handle(Endpoints.java:77)
      	at org.forgerock.http.routing.Router.handle(Router.java:100)
      	at org.forgerock.openam.rest.DisableCachingFilter.filter(DisableCachingFilter.java:90)
      	at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
      	at org.forgerock.openam.audit.AbstractHttpAccessAuditFilter.filter(AbstractHttpAccessAuditFilter.java:88)
      	at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
      	at org.forgerock.http.routing.Router.handle(Router.java:100)
      	at org.forgerock.openam.cors.CorsFilter.filter(CorsFilter.java:91)
      	at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
      	at org.forgerock.openam.rest.RealmContextFilter.filter(RealmContextFilter.java:85)
      	at org.forgerock.http.handler.Handlers$1.handle(Handlers.java:54)
      	at org.forgerock.http.routing.Router.handle(Router.java:100)
      	at org.forgerock.http.routing.Router.handle(Router.java:100)
      	at org.forgerock.openam.rest.RealmRoutingFactory$ChfRealmRouter.handle(RealmRoutingFactory.java:123)
      	at org.forgerock.http.handler.Handlers$UndescribedAsDescribableHandler.handle(Handlers.java:180)
      	at org.forgerock.openam.rest.RealmRoutingFactory$HostnameFilter.filter(RealmRoutingFactory.java:100) 

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                jbranch Jon Branch
                Reporter:
                huck.elliott Huck Elliott
                QA Assignee:
                Ben Apple
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: