Login with Azure Active Directory issue.

[io-err]

Hi,

Probably I found an issue with "Login with AAD".

ENV: openjdk version "1.8.0_292" Tomcat v8.5.68 Axelor v6.0.13

auth.oidc.azuread.client.id, auth.oidc.azuread.secret, auth.oidc.azuread.tenant and auth.callback.url vars are correct.

Steps to reproduce:

1. Go to login page.
2. Click on "Login with Azure Active Directory".
3. After successful check from the Azure side you will be redirected back to login page.

Browser log: URL & Status https://axelor.domain.com/axelor/?client_name=AzureAdClient&hash_location= 302 https://login.microsoftonline.com/tenant/oauth2/authorize/.../... 302 https://axelor.domain.com/axelor/callback/AzureAdClient?code=0.... 302 https://axelor.domain.com/axelor/login.jsp 200

Catalina debug log: o.p.c.c.f.DefaultSecurityClientFinder : Provided clientNames: FormClient,AzureAdClient o.p.c.c.f.DefaultSecurityClientFinder : clientNameOnRequest: AzureAdClient o.p.c.c.f.DefaultSecurityClientFinder : result: [AzureAdClient] o.p.o.r.OidcRedirectActionBuilder : Authentication request url: https://login.microsoftonline.com/xxx/yyy o.p.c.c.f.DefaultSecurityClientFinder : clientNameOnRequest: null o.p.c.c.f.DefaultSecurityClientFinder : result: [FormClient, AzureAdClient]

Access log: "GET /axelor/?client_name=AzureAdClient&hash_location= HTTP/1.1" 302 - "GET /axelor/callback/AzureAdClient?code=0.... HTTP/1.1" 302 - "GET /axelor/login.jsp HTTP/1.1" 200 3643

For configuration I used docs for version 5.4 (https://docs.axelor.com/adk/5.4/dev-guide/modules/security.html#openid-connect)

Thank you.

[tomaskovacik]

same here

[tomaskovacik]

the workaround is to use saml