I've set up pac4j authenticator based on druid-pac4j-extension to authenticate with Okta. I have an issue where users that are present in my Okta instance, but are not assigned to the druid app (in Okta app settings) are redirected to following screen:
As you will see in configuration I'll paste below, I have druid.auth.authenticator.pac4j.skipOnFailure=true set - and I would expect this would effectively take such user to the next authenticator in the chain, but this doesn't happen and the screen that user is redirected to is a dead-end.
Affected Version
29.0.1
Description
I've set up pac4j authenticator based on druid-pac4j-extension to authenticate with Okta. I have an issue where users that are present in my Okta instance, but are not assigned to the druid app (in Okta app settings) are redirected to following screen:
As you will see in configuration I'll paste below, I have
druid.auth.authenticator.pac4j.skipOnFailure=true
set - and I would expect this would effectively take such user to the next authenticator in the chain, but this doesn't happen and the screen that user is redirected to is a dead-end.Configuration in use
Steps to reproduce the problem
anonymous
authenticator)Errors in logs
In default logging I saw only this line in router logs: