search

JetBrains / teamcity-azure-active-directory

TeamCity plugin which supports authentication via Microsoft Azure Active Directory
Apache License 2.0
26 stars 19 forks source link

Getting 400 error after upgrading to latest TC and plugin. #52

Open yannnis opened 3 years ago

yannnis commented 3 years ago

Hi all

We started getting the following error after upgrading quite a few of the components. We also created the Azure AD enterprise app again but no luck

"400 Marked request as unauthenticated since failed to parse JWT from retrieved id_token" (token follows)

I suspect it has to do with a certificate mismatch in TC and the AAD plugin. Anyone able to help?

SithVicious commented 3 years ago

https://youtrack.jetbrains.com/issue/TW-66625

Doesnt this work for you?

IlyaFomenko commented 3 years ago

Please try 0.7.0 version of the plugin

pstabno commented 3 years ago

Hello,

Also facing similar issue with error 400. Yesterday I've updated plugin to version 0.7.0. TC server in version 2020.1.3. Same behavior like for previous version of plugin. Also I've just tried solution from @SithVicious but unfortunately without any luck. Are there any possible ways to debug this issue deeper?

SithVicious commented 3 years ago

Definitely rebooted after?

-Paul

On 16 Sep 2020, at 5:03 pm, pstabno notifications@github.com wrote:



Hello,

Also facing similar issue with error 400. Yesterday I've updated plugin to version 0.7.0. TC server in version 2020.1.3. Same behavior like for previous version of plugin. Also I've just tried solution from @SithVicioushttps://github.com/SithVicious but unfortunately without any luck. Are there any possible ways to debug this issue deeper?

— You are receiving this because you were mentioned. Reply to this email directly, view it on GitHubhttps://github.com/JetBrains/teamcity-azure-active-directory/issues/52#issuecomment-693216069, or unsubscribehttps://github.com/notifications/unsubscribe-auth/AGCHFHSVPKQY7DPPJTJMFOTSGBPNJANCNFSM4QBWIF2A.

pstabno commented 3 years ago

Yes - even whole VM that is hosting this instance.

pstabno commented 3 years ago

Even tried AzureAD with proxy - still no success. We are getting out of ideas :/

IlyaFomenko commented 3 years ago

@yannnis, @pstabno could you please raise a support ticket here and post ticket id? I need more information like logs etc.

pstabno commented 3 years ago

Also I would like to ask - should we go only with default attributes and claims? or there should be any custom ones added? Also - just for my curiosity - why plugin is using ApplicationID instead of certificate directly?

pstabno commented 3 years ago

https://teamcity-support.jetbrains.com/hc/en-us/community/posts/360009744200-Error-400-Bad-request-when-integrate-with-AzureAD