search

okta / okta-signin-widget

HTML/CSS/JS widget that provides out-of-the-box authentication UX for your organization's apps
Other
376 stars 319 forks source link

No error handling for "User creation is disabled." error message #3053

Open galinski-n opened 1 year ago

galinski-n commented 1 year ago

Describe the bug

Within the Okta SignIn Widget, I have added the use of the Google IdP to allow signing in with a Google account. I do not have JIT provisioning turned on. If the account does not exist, the user is not logged in and no account is created. However, a very unfriendly message appears stating "User creation is disabled" and there is no way to alter this messaging.

What is expected to happen?

An override to alter this messaging.

What is the actual behavior?

No override exists.

Reproduction Steps

Add Google IdP to SignIn Widget Ensure that JIT is off (option to redirect to signin page is selected) Attempt to sign in with Google using an account that does not exist in Okta

SDK Versions

Include="Okta.Sdk" Version="5.0.0

Execution Environment

Chrome/Brave browsers, Windows 10, JavaScript/C# stack

Additional Information?

image

denysoblohin-okta commented 1 year ago

This error message comes from sign-in redirect URL <your-okta-host>/login/callback?state=XXX&error=access_denied&error_description=User+creation+was+disabled. It's not one of error messages that come from API and can be translated by widget with i18n