Menu
▾
▴
Re: [Unity-idm-discuss] different behaviour for disabled accounts
|
From: Krzysztof B. <kb...@un...> - 2018-02-26 22:14:34
|
Hi Sander, W dniu 22.02.2018 o 09:48, Sander Apweiler pisze: > Hi Krzysztof, all, > > I have disabled several accounts in my unity instance. Some of them are > local accounts and some of them are federated account from Google or > home organisation. > > If one of the users with a disabled account tries to login at an SP > unity has a different behaviour. > > 1. User with local unity account signs in: > - SP redirects user to unity > - users tries to sign in > - unity shows an error > 2. User with federated account signs in: > - SP redirects user to unity > - user select IdP and is forwarded to it > - user signs in at IdP and come back to unity > - unity shows no error and send the user back to SP > - an error at SP occurs > > I think the behaviour in the first situation is correct/the better one. > Is there a reason why the error is not shown in the second case and an > incorrect authentication is send to the SPs? I've checked this and the second case indeed should not behave this way. I'll open a ticket to fix this behavior, thx for noting this. Cheers, Krzysztof |
