SCIM with Azure AD / Entra only works once with an API Key

[cmantsch]

Debug mode

• [X] I have enabled debug mode
• [X] I have read checked the Common Issues page

Describe the bug

Provisioning users over SCIM seems only to work once when I create a new API key in Snipe-IT.

Reproduction steps

1. Generate API Key at https:///account/api
2. Set API Key as Secret Key in Snipe IT Microsoft Entra Application
3. Start Provisioning -> Provisioning will run just fine
4. Wait until next run -> Provisioning fails

Expected behavior

Provisioning Users works consistently without needing a new API key for every run

Screenshots

No response

Snipe-IT Version

v6.2.4-pre - build 12343 (Docker Image, latest)

Operating System

Ubuntu 22.04

Web Server

Traefik Reverse Proxy

PHP Version

8.1.2-1ubuntu2.14

Operating System

macOS

Browser

Google Chrome

Version

120

Device

No response

Operating System

No response

Browser

No response

Version

No response

Error messages

This is the error message received by mail from Microsoft Entra:

While attempting to validate our authorization to access your application, we received this unexpected response: We are not able to deserialize the resource received from your SCIM endpoint because your SCIM endpoint is not fully compatible with the Azure Active Directory SCIM client. Here is the resource we received from your SCIM endpoint: <!-- Copyright (C) Microsoft Corporation. All rights reserved. --> <!DOCTYPE html> <html dir="ltr" class="" lang="en"> <head> <title>Sign in to your account</title> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1.0, maximum-scale=2.0, user-scalable=yes"> <meta http-equiv="Pragma" content="no-cache"> <meta http-equiv="Expires" content="-1"> <link rel="preconnect" href="https://aadcdn.msauth.net" crossorigin> <meta http-equiv="x-dns-prefetch-control" content="on"> <link rel="dns-prefetch" href="//aadcdn.msauth.net"> <link rel="dns-prefetch" href="//aadcdn.msftauth.net"> <meta name="PageID" content="ConvergedSignIn" /> <meta name="SiteID" content="" /> <meta name="ReqLC" content="1033" /> <meta name="LocLC" content="en-US" /> <meta name="referrer" content="origin" /> <meta name="format-detection" content="telephone=no" /> <noscript> <meta http-equiv="Refresh" content="0; URL=https://login.microsoftonline.com/jsdisabled" /> </noscript> <meta name="robots" content="none" /> <script type="text/javascript">//<![CDATA[ $Config={"fShowPersistentCookiesWarning":false,"urlMsaSignUp":"https://login.live.com/oauth20_authorize.srf?scope=openid+profile+email+offline_access\u0026response_type=code\u0026client_id=51483342-085c-4d86-bf88-cf50c7252078\u0026response_mode=form_post\u0026redirect_uri=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2ffederation%2foauth2msa\u0026state=rQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HZzFyxudklqXqJefnrmLUJ84g_eLE3Bz9xOTiQ4yG_n6uPv7unn7xSeaJiYmpBqaWaSlJaUamyeZmBpaWBuaGxslpBhZJiUZGJkZpxilpphcYGV8wMt5iYg0GGmI0i9mQSDtz8tMz88A2b2JWMTAyTUu0TDHUNbE0AxKGRka6SSmGhroGqeaW5sbGRuapKRYXWHh-sDAuYgX6Ou9pn8WH1gLXxorGwuyoWQynWPWzMj3LPSP0fZKL8l28TMJy_PzcDMKS0jw9LPIqk0KTwxwtI82LjYsMnNxCbS2tDCew8Z5iY_jAxtjBzjCLnWEXJ6lBtYGH8QAvww--neteHPi8u_Wdxyt-HdcUy8wUUzOnVMvCiJT8dGejLI-QnBBPD_ew5IiIlKLICANDy5CoRC9TP1_bDQIMAA2\u0026estsfed=1\u0026uaid=1c8e88e8e5d0416fab3ec87d4c354ac1\u0026signup=1\u0026lw=1\u0026fl=easi2\u0026fci=https%3a%2f%2fmysnipeinstance.example.com","urlMsaLogout":"https://login.live.com/logout.srf?iframed_by=https%3a%2f%2flogin.microsoftonline.com","urlOtherIdpForget":"https://login.live.com/forgetme.srf?iframed_by=https%3a%2f%2flogin.microsoftonline.com","showCantAccessAccountLink":true,"urlGitHubFed":"https://login.live.com/oauth20_authorize.srf?scope=openid+profile+email+offline_access\u0026response_type=code\u0026client_id=51483342-085c-4d86-bf88-cf50c7252078\u0026response_mode=form_post\u0026redirect_uri=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2ffederation%2foauth2msa\u0026state=rQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HZzFyxudklqXqJefnrmLUJ84g_eLE3Bz9xOTiQ4yG_n6uPv7unn7xSeaJiYmpBqaWaSlJaUamyeZmBpaWBuaGxslpBhZJiUZGJkZpxilpphcYGV8wMt5iYg0GGmI0i9mQSDtz8tMz88A2b2JWMTAyTUu0TDHUNbE0AxKGRka6SSmGhroGqeaW5sbGRuapKRYXWHh-sDAuYgX6Ou9pn8WH1gLXxorGwuyoWQynWPWzMj3LPSP0fZKL8l28TMJy_PzcDMKS0jw9LPIqk0KTwxwtI82LjYsMnNxCbS2tDCew8Z5iY_jAxtjBzjCLnWEXJ6lBtYGH8QAvww--neteHPi8u_Wdxyt-HdcUy8wUUzOnVMvCiJT8dGejLI-QnBBPD_ew5IiIlKLICANDy5CoRC9TP1_bDQIMAA2\u0026estsfed=1\u0026uaid=1c8e88e8e5d0416fab3ec87d4c354ac1\u0026fci=https%3a%2f%2fmysnipeinstance.example.com\u0026idp_hint=github.com","arrExternalTrustedRealmFederatedIdps":[],"fShowSignInWithGitHubOnlyOnCredPicker":true,"fEnableShowResendCode":true,"iShowResendCodeDelay":90000,"sSMSCtryPhoneData":"AF~Afghanistan~93!!!AX~Åland Islands~358!!!AL~Albania~355!!!DZ~Algeria~213!!!AS~American Samoa~1!!!AD~Andorra~376!!!AO~Angola~244!!!AI~Anguilla~1!!!AG~Antigua and Barbuda~1!!!AR~Argentina~54!!!AM~Armenia~374!!!AW~Aruba~297!!!AC~Ascension Island~247!!!AU~Australia~61!!!AT~Austria~43!!!AZ~Azerbaijan~994!!!BS~Bahamas~1!!!BH~Bahrain~973!!!BD~Bangladesh~880!!!BB~Barbados~1!!!BY~Belarus~375!!!BE~Belgium~32!!!BZ~Belize~501!!!BJ~Benin~229!!!BM~Bermuda~1!!!BT~Bhutan~975!!!BO~Bolivia~591!!!BQ~Bonaire~599!!!BA~Bosnia and Herzegovina~387!!!BW~Botswana~267!!!BR~Brazil~55!!!IO~British Indian Ocean Territory~246!!!VG~British Virgin Islands~1!!!BN~Brunei~673!!!BG~Bulgaria~359!!!BF~Burkina Faso~226!!!BI~Burundi~257!!!CV~Cabo Verde~238!!!KH~Cambodia~855!!!CM~Cameroon~237!!!CA~Canada~1!!!KY~Cayman Islands~1!!!CF~Central African Republic~236!!!TD~Chad~235!!!CL~Chile~56!!!CN~China~86!!!CX~Christmas Island~61!!!CC~Cocos (Keeling) Islands~61!!!CO~Colombia~57!!!KM~Comoros~269!!!CG~Congo~242!!!CD~Congo (DRC)~243!!!CK~Cook Islands~682!!!CR~Costa Rica~506!!!CI~Côte d\u0027Ivoire~225!!!HR~Croatia~385!!!CU~Cuba~53!!!CW~Curaçao~599!!!CY~Cyprus~357!!!CZ~Czechia~420!!!DK~Denmark~45!!!DJ~Djibouti~253!!!DM~Dominica~1!!!DO~Dominican Republic~1!!!EC~Ecuador~593!!!EG~Egypt~20!!!SV~El Salvador~503!!!GQ~Equatorial Guinea~240!!!ER~Eritrea~291!!!EE~Estonia~372!!!ET~Ethiopia~251!!!FK~Falkland Islands~500!!!FO~Faroe Islands~298!!!FJ~Fiji~679!!!FI~Finland~358!!!FR~France~33!!!GF~French Guiana~594!!!PF~French Polynesia~689!!!GA~Gabon~241!!!GM~Gambia~220!!!GE~Georgia~995!!!DE~Germany~49!!!GH~Ghana~233!!!GI~Gibraltar~350!!!GR~Greece~30!!!GL~Greenland~299!!!GD~Grenada~1!!!GP~Guadeloupe~590!!!GU~Guam~1!!!GT~Guatemala~502!!!GG~Guernsey~44!!!GN~Guinea~224!!!GW~Guinea-Bissau~245!!!GY~Guyana~592!!!HT~Haiti~509!!!HN~Honduras~504!!!HK~Hong Kong SAR~852!!!HU~Hungary~36!!!IS~Iceland~354!!!IN~India~91!!!ID~Indonesia~62!!!IR~Iran~98!!!IQ~Iraq~964!!!IE~Ireland~353!!!IM~Isle of Man~44!!!IL~Israel~972!!!IT~Italy~39!!!JM~Jamaica~1!!!JP~Japan~81!!!JE~Jersey~44!!!JO~Jordan~962!!!KZ~Kazakhstan~7!!!KE~Kenya~254!!!KI~Kiribati~686!!!KR~Korea~82!!!KW~Kuwait~965!!!KG~Kyrgyzstan~996!!!LA~Laos~856!!!LV~Latvia~371!!!LB~Lebanon~961!!!LS~Lesotho~266!!!LR~Liberia~231!!!LY~Libya~218!!!LI~Liechtenstein~423!!!LT~Lithuania~370!!!LU~Luxembourg~352!!!MO~Macao SAR~853!!!MG~Madagascar~261!!!MW~Malawi~265!!!MY~Malaysia~60!!!MV~Maldives~960!!!ML~Mali~223!!!MT~Malta~356!!!MH~Marshall Islands~692!!!MQ~Martinique~596!!!MR~Mauritania~222!!!MU~Mauritius~230!!!YT~Mayotte~262!!!MX~Mexico~52!!!FM~Micronesia~691!!!MD~Moldova~373!!!MC~Monaco~377!!!MN~Mongolia~976!!!ME~Montenegro~382!!!MS~Montserrat~1!!!MA~Morocco~212!!!MZ~Mozambique~258!!!MM~Myanmar~95!!!NA~Namibia~264!!!NR~Nauru~674!!!NP~Nepal~977!!!NL~Netherlands~31!!!NC~New Caledonia~687!!!NZ~New Zealand~64!!!NI~Nicaragua~505!!!NE~Niger~227!!!NG~Nigeria~234!!!NU~Niue~683!!!NF~Norfolk Island~672!!!KP~North Korea~850!!!MK~North Macedonia~389!!!MP~Northern Mariana Islands~1!!!NO~Norway~47!!!OM~Oman~968!!!PK~Pakistan~92!!!PW~Palau~680!!!PS~Palestinian Authority~970!!!PA~Panama~507!!!PG~Papua New Guinea~675!!!PY~Paraguay~595!!!PE~Peru~51!!!PH~Philippines~63!!!PL~Poland~48!!!PT~Portugal~351!!!PR~Puerto Rico~1!!!QA~Qatar~974!!!RE~Réunion~262!!!RO~Romania~40!!!RU~Russia~7!!!RW~Rwanda~250!!!BL~Saint Barthélemy~590!!!KN~Saint Kitts and Nevis~1!!!LC~Saint Lucia~1!!!MF~Saint Martin~590!!!PM~Saint Pierre and Miquelon~508!!!VC~Saint Vincent and the Grenadines~1!!!WS~Samoa~685!!!SM~San Marino~378!!!ST~São Tomé and Príncipe~239!!!SA~Saudi Arabia~966!!!SN~Senegal~221!!!RS~Serbia~381!!!SC~Seychelles~248!!!SL~Sierra Leone~232!!!SG~Singapore~65!!!SX~Sint Maarten~1!!!SK~Slovakia~421!!!SI~Slovenia~386!!!SB~Solomon Islands~677!!!SO~Somalia~252!!!ZA~South Africa~27!!!SS~South Sudan~211!!!ES~Spain~34!!!LK~Sri Lanka~94!!!SH~St Helena, Ascension, and Tristan da Cunha~290!!!SD~Sudan~249!!!SR~Suriname~597!!!SJ~Svalbard~47!!!SZ~Swaziland~268!!!SE~Sweden~46!!!CH~Switzerland~41!!!SY~Syria~963!!!TW~Taiwan~886!!!TJ~Tajikistan~992!!!TZ~Tanzania~255!!!TH~Thailand~66!!!TL~Timor-Leste~670!!!TG~Togo~228!!!TK~Tokelau~690!!!TO~Tonga~676!!!TT~Trinidad and Tobago~1!!!TA~Tristan da Cunha~290!!!TN~Tunisia~216!!!TR~Turkey~90!!!TM~Turkmenistan~993!!!TC~Turks and Caicos Islands~1!!!TV~Tuvalu~688!!!VI~U.S. Virgin Islands~1!!!UG~Uganda~256!!!UA~Ukraine~380!!!AE~United Arab Emirates~971!!!GB~United Kingdom~44!!!US~United States~1!!!UY~Uruguay~598!!!UZ~Uzbekistan~998!!!VU~Vanuatu~678!!!VA~Vatican City~39!!!VE~Venezuela~58!!!VN~Vietnam~84!!!WF~Wallis and Futuna~681!!!YE~Yemen~967!!!ZM~Zambia~260!!!ZW~Zimbabwe~263","fUseInlinePhoneNumber":true,"fDetectBrowserCapabilities":true,"fUseMinHeight":true,"fShouldSupportTargetCredentialForRecovery":true,"fAvoidNewOtcGenerationWhenAlreadySent":true,"fAllowLoginTextCustomizations":true,"fUsePromotedFedCredTypesArray":true,"fUseCertificateInterstitialView":true,"arrPromotedFedCredTypes":[],"fShowUserAlreadyExistErrorHandling":true,"fFixSignupInitialViewId":true,"fBlockOnAppleEmailClaimError":true,"iVerifiableCredentialPresentationPollingIntervalSeconds":0.5,"iVerifiableCredentialPresentationPollingTimeoutSeconds":300,"urlSessionState":"https://login.microsoftonline.com/common/DeviceCodeStatus","urlResetPassword":"https://passwordreset.microsoftonline.com/?ru=https%3a%2f%2flogin.microsoftonline.com%2f025fa9d1-4961-4122-bd11-0e7973327ed8%2freprocess%3fctx%3drQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HVzHqE6dZvzgxN0c_Mbn4EKOhv5-rj7-7p198knliYmKqgallWkpSmpFpsrmZgaWlgbmhcXKagUVSopGRiVGacUqa6QVGxheMjLeYWIOBhhjNYjYk0s6c_PTMPLDNm5hVDIxM0xItUwx1TSzNgIShkZFuUoqhoa5BqrmlubGxkXlqisUFFp4fLIyLWIE-zXvaZ_GhtcC1saKxMDtqFsMpVv2sTM9yzwh9n-SifBcvk7AcPz83g7CkNE8Pi7zKpNDkMEfLSPNi4yIDJ7dQW0srwwlsvKfYGD6wMXawM8xiZ9jFSWpQHeBl-MG3c92LA593t77zeMWv45pimZliauaUalkYkZKf7myU5RGSE-Lp4R6WHBGRUhQZYWBoGRKV6GXq52u7QYABAA2\u0026mkt=en-US\u0026hosted=0","urlMsaResetPassword":"https://account.live.com/password/reset?wreply=https%3a%2f%2flogin.microsoftonline.com%2f025fa9d1-4961-4122-bd11-0e7973327ed8%2freprocess%3fctx%3drQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HVzHqE6dZvzgxN0c_Mbn4EKOhv5-rj7-7p198knliYmKqgallWkpSmpFpsrmZgaWlgbmhcXKagUVSopGRiVGacUqa6QVGxheMjLeYWIOBhhjNYjYk0s6c_PTMPLDNm5hVDIxM0xItUwx1TSzNgIShkZFuUoqhoa5BqrmlubGxkXlqisUFFp4fLIyLWIE-zXvaZ_GhtcC1saKxMDtqFsMpVv2sTM9yzwh9n-SifBcvk7AcPz83g7CkNE8Pi7zKpNDkMEfLSPNi4yIDJ7dQW0srwwlsvKfYGD6wMXawM8xiZ9jFSWpQHeBl-MG3c92LA593t77zeMWv45pimZliauaUalkYkZKf7myU5RGSE-Lp4R6WHBGRUhQZYWBoGRKV6GXq52u7QYABAA2\u0026mkt=en-US","fFixUrlResetPassword":true,"urlGetCredentialType":"https://login.microsoftonline.com/common/GetCredentialType?mkt=en-US","urlGetRecoveryCredentialType":"https://login.microsoftonline.com/common/getrecoverycredentialtype?mkt=en-US","urlGetOneTimeCode":"https://login.microsoftonline.com/common/GetOneTimeCode","urlLogout":"https://login.microsoftonline.com/025fa9d1-4961-4122-bd11-0e7973327ed8/uxlogout","urlForget":"https://login.microsoftonline.com/forgetuser","urlDisambigRename":"https://go.microsoft.com/fwlink/p/?LinkID=733247","urlGoToAADError":"https://login.live.com/oauth20_authorize.srf?scope=openid+profile+email+offline_access\u0026response_type=code\u0026client_id=51483342-085c-4d86-bf88-cf50c7252078\u0026response_mode=form_post\u0026redirect_uri=https%3a%2f%2flogin.microsoftonline.com%2fcommon%2ffederation%2foauth2msa\u0026state=rQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HZzFyxudklqXqJefnrmLUJ84g_eLE3Bz9xOTiQ4yG_n6uPv7unn7xSeaJiYmpBqaWaSlJaUamyeZmBpaWBuaGxslpBhZJiUZGJkZpxilpphcYGV8wMt5iYg0GGmI0i9mQSDtz8tMz88A2b2JWMTAyTUu0TDHUNbE0AxKGRka6SSmGhroGqeaW5sbGRuapKRYXWHh-sDAuYgX6Ou9pn8WH1gLXxorGwuyoWQynWPWzMj3LPSP0fZKL8l28TMJy_PzcDMKS0jw9LPIqk0KTwxwtI82LjYsMnNxCbS2tDCew8Z5iY_jAxtjBzjCLnWEXJ6lBtYGH8QAvww--neteHPi8u_Wdxyt-HdcUy8wUUzOnVMvCiJT8dGejLI-QnBBPD_ew5IiIlKLICANDy5CoRC9TP1_bDQIMAA2\u0026estsfed=1\u0026uaid=1c8e88e8e5d0416fab3ec87d4c354ac1\u0026fci=https%3a%2f%2fmysnipeinstance.example.com","urlDeviceFingerprinting":"","urlPIAEndAuth":"https://login.microsoftonline.com/common/PIA/EndAuth","fKMSIEnabled":false,"iLoginMode":1,"fAllowPhoneSignIn":true,"fAllowPhoneInput":true,"fAllowSkypeNameLogin":true,"iMaxPollErrors":5,"iPollingTimeout":60,"srsSuccess":true,"fShowSwitchUser":true,"arrValErrs":["50058"],"sErrorCode":"50058","sWAMExtension":"ppnbnpeolgkicgegkbkbjmhlideopiji","sWAMChannel":"53ee284d-920a-4b59-9d30-a60315b26836","sErrTxt":"","sResetPasswordPrefillParam":"username","onPremPasswordValidationConfig":{"isUserRealmPrecheckEnabled":true},"fSwitchDisambig":true,"iRemoteNgcPollingType":2,"fUseNewNoPasswordTypes":true,"urlAadSignup":"https://signup.microsoft.com/signup?sku=teams_commercial_trial\u0026origin=ests\u0026culture=en-US","sCloudInstanceName":"microsoftonline.com","fShowSignInOptionsAsButton":true,"fUpdateLoginHint":true,"fUpdateLoginHintIdpDisambig":true,"fUseNewPhoneSignInError":true,"fImprovePhoneDisambig":true,"fIsUpdatedAutocompleteEnabled":true,"fAddCanaryToGctProviderCertAuth":true,"fActivateFocusOnApprovalNumberRemoteNGC":true,"iMaxStackForKnockoutAsyncComponents":10000,"fShowButtons":true,"urlCdn":"https://aadcdn.msauth.net/shared/1.0/","urlDefaultFavicon":"https://aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico","urlFooterTOU":"https://www.microsoft.com/en-US/servicesagreement/","urlFooterPrivacy":"https://privacy.microsoft.com/en-US/privacystatement","urlPost":"/025fa9d1-4961-4122-bd11-0e7973327ed8/login","urlRefresh":"https://login.microsoftonline.com/025fa9d1-4961-4122-bd11-0e7973327ed8/reprocess?ctx=rQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HVzHqE6dZvzgxN0c_Mbn4EKOhv5-rj7-7p198knliYmKqgallWkpSmpFpsrmZgaWlgbmhcXKagUVSopGRiVGacUqa6QVGxheMjLeYWIOBhhjNYjYk0s6c_PTMPLDNm5hVDIxM0xItUwx1TSzNgIShkZFuUoqhoa5BqrmlubGxkXlqisUFFp4fLIyLWIE-zXvaZ_GhtcC1saKxMDtqFsMpVv2sTM9yzwh9n-SifBcvk7AcPz83g7CkNE8Pi7zKpNDkMEfLSPNi4yIDJ7dQW0srwwlsvKfYGD6wMXawM8xiZ9jFSWpQHeBl-MG3c92LA593t77zeMWv45pimZliauaUalkYkZKf7myU5RGSE-Lp4R6WHBGRUhQZYWBoGRKV6GXq52u7QYABAA2","urlCancel":"https://mysnipeinstance.example.com/saml/acs?error=access_denied\u0026error_subcode=cancel\u0026state=https%3a%2f%2fmysnipeinstance.example.com%2flogin%2fsaml","urlResume":"https://login.microsoftonline.com/025fa9d1-4961-4122-bd11-0e7973327ed8/resume?ctx=rQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HVzHqE6dZvzgxN0c_Mbn4EKOhv5-rj7-7p198knliYmKqgallWkpSmpFpsrmZgaWlgbmhcXKagUVSopGRiVGacUqa6QVGxheMjLeYWIOBhhjNYjYk0s6c_PTMPLDNm5hVDIxM0xItUwx1TSzNgIShkZFuUoqhoa5BqrmlubGxkXlqisUFFp4fLIyLWIE-zXvaZ_GhtcC1saKxMDtqFsMpVv2sTM9yzwh9n-SifBcvk7AcPz83g7CkNE8Pi7zKpNDkMEfLSPNi4yIDJ7dQW0srwwlsvKfYGD6wMXawM8xiZ9jFSWpQHeBl-MG3c92LA593t77zeMWv45pimZliauaUalkYkZKf7myU5RGSE-Lp4R6WHBGRUhQZYWBoGRKV6GXq52u7QYABAA2","iPawnIcon":0,"iPollingInterval":1,"sPOST_Username":"","sFT":"AQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-3JlQhqeX5D3SyB5fMYe_TVIONPsbHzL0sRzH_WswKld0opWvb3fCFSGY0XxfCND_ER4dUKxf70t7tps3ZCCPsyUc182CMtBZJs_I8bJWfE4psIaBhZ3qfDQzvfAm4w2I4L7BbjLjyByzVSmws8rH1S1npO27cPx1GKgFO-dTzbD4kzdK5yoOop0UPzJ39nQbQd9pm8UBNVOh2hrG4NyRvRqWB_8l1pWQeHMeDe3ILzkADa7USjqTFwZ040b93HwCIFgGHo7E-2LwQKxsraJaFsi9CYXuVuLYkEz0lDWhXX1AUerVDj0NU9CaX-YWgksvuANv02sjHIZdt_ziar41xKnKdvopEtY6LMYdREL7iCxeNBP9rO9qZ05yVSuZ-zWMYauKb9t5_Gzawsuvvatnh5LQqwB2-rLs9aYFcWBrv_BmfoiL9skN-Q2kFvojiP6eEQ1Qbj69Qhe4jgi1ZSRnTiB9rb7-p5xd0ZUJ03wFNjn0LwPNKFFHgqQptyExM8KKOFG3rVe2LMe-2WSFKweZi_AsljovVeI_rlO6Bc3AM18rhX_Ox8XtOPInfPk95Y5NywOKYs_cW6X_vLH871yN2IkKBza5CCVdxIHhfV2ZzbX3gXIgjR8HwahZPD8FHryyIAA","sFTName":"flowToken","sSessionIdentifierName":"code","sCtx":"rQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HVzHqE6dZvzgxN0c_Mbn4EKOhv5-rj7-7p198knliYmKqgallWkpSmpFpsrmZgaWlgbmhcXKagUVSopGRiVGacUqa6QVGxheMjLeYWIOBhhjNYjYk0s6c_PTMPLDNm5hVDIxM0xItUwx1TSzNgIShkZFuUoqhoa5BqrmlubGxkXlqisUFFp4fLIyLWIE-zXvaZ_GhtcC1saKxMDtqFsMpVv2sTM9yzwh9n-SifBcvk7AcPz83g7CkNE8Pi7zKpNDkMEfLSPNi4yIDJ7dQW0srwwlsvKfYGD6wMXawM8xiZ9jFSWpQHeBl-MG3c92LA593t77zeMWv45pimZliauaUalkYkZKf7myU5RGSE-Lp4R6WHBGRUhQZYWBoGRKV6GXq52u7QYABAA2","iProductIcon":-1,"staticTenantBranding":[{"Locale":0,"BannerLogo":"https://aadcdn.msauthimages.net/c1c6b6c8-uknjw-r2mliopm1oyj6z4pga-bvzcwqp0yigleqscfy/logintenantbranding/0/bannerlogo?ts=637260965513498907","TileLogo":"https://aadcdn.msauthimages.net/c1c6b6c8-uknjw-r2mliopm1oyj6z4pga-bvzcwqp0yigleqscfy/logintenantbranding/0/tilelogo?ts=637260965523055573","TileDarkLogo":"https://aadcdn.msauthimages.net/c1c6b6c8-uknjw-r2mliopm1oyj6z4pga-bvzcwqp0yigleqscfy/logintenantbranding/0/squarelogodark?ts=637260965529619484","Illustration":"https://aadcdn.msauthimages.net/c1c6b6c8-uknjw-r2mliopm1oyj6z4pga-bvzcwqp0yigleqscfy/logintenantbranding/0/illustration?ts=637260968771357898","BackgroundColor":"#0960B9","KeepMeSignedInDisabled":false,"UseTransparentLightBox":false}],"oAppCobranding":{},"iBackgroundImage":2,"arrSessions":[],"fApplicationInsightsEnabled":false,"iApplicationInsightsEnabledPercentage":0,"urlSetDebugMode":"https://login.microsoftonline.com/common/debugmode","fEnableCssAnimation":true,"fAllowGrayOutLightBox":true,"fIsRemoteNGCSupported":true,"urlLogin":"https://login.microsoftonline.com/025fa9d1-4961-4122-bd11-0e7973327ed8/reprocess?ctx=rQQIARAA42KwUssoKSkottLXTywuTi3JTcxLTE_NTc0r0UsvSs2ryskvKU7N00tJLRLiEnjR0Sdz4Wm-42q7E7U-pl4HVzHqE6dZvzgxN0c_Mbn4EKOhv5-rj7-7p198knliYmKqgallWkpSmpFpsrmZgaWlgbmhcXKagUVSopGRiVGacUqa6QVGxheMjLeYWIOBhhjNYjYk0s6c_PTMPLDNm5hVDIxM0xItUwx1TSzNgIShkZFuUoqhoa5BqrmlubGxkXlqisUFFp4fLIyLWIE-zXvaZ_GhtcC1saKxMDtqFsMpVv2sTM9yzwh9n-SifBcvk7AcPz83g7CkNE8Pi7zKpNDkMEfLSPNi4yIDJ7dQW0srwwlsvKfYGD6wMXawM8xiZ9jFSWpQHeBl-MG3c92LA593t77zeMWv45pimZliauaUalkYkZKf7myU5RGSE-Lp4R6WHBGRUhQZYWBoGRKV6GXq52u7QYABAA2","urlDssoStatus":"https://login.microsoftonline.com/common/instrumentation/dssostatus","fUseSameSite":true,"iAllowedIdentities":2,"uiflavor":1001,"fOfflineAccountVisible":false,"fEnableUserStateFix":true,"fAccessPassSupported":true,"fShowAccessPassPeek":true,"fUpdateSessionPollingLogic":true,"fEnableShowPickerCredObservable":true,"fFetchSessionsSkipDsso":true,"fUseNonMicrosoftDefaultBrandingForCiam":true,"sCompanyDisplayName":"JL Group","fMergeComplexBrandingProperties":true,"fRemoveCustomCss":true,"fAddRtlCustomCssSupport":true,"fFixLightboxHeaderMargin":true,"fFixUICrashForApiRequestHandler":true,"fDeprecateBrandingProperties":true,"fFixDynamicTenantBranding":true,"fShowUpdatedKoreanPrivacyFooter":true,"fUsePostCssHotfix":true,"scid":1015,"hpgact":1900,"hpgid":1104,"pgid":"ConvergedSignIn","apiCanary":"PAQABAAEAAAAmoFfGtYxvRrNriQdPKIZ-96NApWyQaO9n7Gik2l5M0jqwXvHG6iN2hBAV6S4KlQ7vbnAS0B__J2_8IXpGpD0jnReSEpEyR7B8Hn6Ls-YgcI837Ke6rZx7fLCjxu5z3uVDayYDUuuopPx17N-3La4UpsnaE2vxMmu-BSosQN1WcPtBRs-JlH0fWO0WQV7Q5wlVE-0vFw8tMLEq3dSJDkZoQ925rI4WNjm_yOu9LYTNhyAA","canary":"jiIwIX/LcroDJ4VlNNF0VbfIH8nybUcVA9Y7s3r0BFU=9:1:CANARY:Ed9id56Be9qXdogC2jHTlTIHGVcXXdrYX019TZaJ5NM=","sCanaryTokenName":"canary","fSkipRenderingNewCanaryToken":false,"fEnableNewCsrfProtection":true,"correlationId":"1c8e88e8-e5d0-416f-ab3e-c87d4c354ac1","sessionId":"388ee56e-85f0-4570-8178-81716b5a9a00","locale":{"mkt":"en-US","lcid":1033},"slMaxRetry":2,"slReportFailure":true,"strings":{"desktopsso":{"authenticatingmessage":"Trying to sign you in"}},"enums":{"ClientMetricsModes":{"None":0,"SubmitOnPost":1,"SubmitOnRedirect":2,"InstrumentPlt":4}},"urls":{"instr":{"pageload":"https://login.microsoftonline.com/common/instrumentation/reportpageload","dssostatus":"https://login.microsoftonline.com/common/instrumentation/dssostatus"}},"browser":{"ltr":1,"_Other":1,"Full":1,"RE_Other":1,"b":{"name":"Other","major":-1,"minor":-1},"os":{"name":"Unknown","version":""},"V":-1},"watson":{"url":"/common/handlers/watson","bundle":"https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/watson.min_q5ptmu8aniymd4ftuqdkda2.js","sbundle":"https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/watsonsupportwithjquery.3.5.min_dc940oomzau4rsu8qesnvg2.js","fbundle":"https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/frameworksupport.min_oadrnc13magb009k4d20lg2.js","resetErrorPeriod":5,"maxCorsErrors":-1,"maxInjectErrors":5,"maxErrors":10,"maxTotalErrors":3,"expSrcs":["https://login.microsoftonline.com","https://aadcdn.msauth.net/","https://aadcdn.msftauth.net/",".login.microsoftonline.com"],"envErrorRedirect":true,"envErrorUrl":"/common/handlers/enverror"},"loader":{"cdnRoots":["https://aadcdn.msauth.net/","https://aadcdn.msftauth.net/"],"logByThrowing":true,"tenantBrandingCdnRoots":["aadcdn.msauthimages.net","aadcdn.msftauthimages.net"]},"serverDetails":{"slc":"ProdSlices","dc":"FRC","ri":"PA1XXXX","ver":{"v":[2,1,16986,9]},"rt":"2024-01-15T15:32:44","et":42},"clientEvents":{"enabled":true,"telemetryEnabled":true,"useOneDSEventApi":true,"flush":60000,"autoPost":true,"autoPostDelay":1000,"minEvents":1,"maxEvents":1,"pltDelay":500,"appInsightsConfig":{"instrumentationKey":"b0c252808e614e949086e019ae1cb300-e0c02060-e3b3-4965-bd7c-415e1a7a9fde-6951","webAnalyticsConfiguration":{"autoCapture":{"jsError":true}}},"defaultEventName":"IDUX_ESTSClientTelemetryEvent_WebWatson","serviceID":3,"endpointUrl":"https://eu-mobile.events.data.microsoft.com/OneCollector/1.0/"},"fApplyAsciiRegexOnInput":true,"country":"NL","fBreakBrandingSigninString":true,"bsso":{"type":"none","reason":"Chrome: Pull suppressed as UserAgent did not meet required criteria, Other: Pull suppressed as UserAgent did not meet required criteria"},"urlNoCookies":"https://login.microsoftonline.com/cookiesdisabled","fTrimChromeBssoUrl":true,"inlineMode":5,"fTenantBrandingCdnAddEventHandlers":true}; //]]></script> <script type="text/javascript">//<![CDATA[ !function(){var e=window,r=e.$Debug=e.$Debug||{},t=e.$Config||{};if(!r.appendLog){var n=[],o=0;r.appendLog=function(e){var r=t.maxDebugLog||25,i=(new Date).toUTCString()+":"+e;n.push(o+":"+i),n.length>r&&n.shift(),o++},r.getLogs=function(){return n}}}(),function(){function e(e,r){function t(i){var a=e[i];if(i<n-1){return void(o.r[a]?t(i+1):o.when(a,function(){t(i+1)}))}r(a)}var n=e.length;t(0)}function r(e,r,i){function a(){var e=!!s.method,o=e?s.method:i[0],a=s.extraArgs||[],u=n.$WebWatson;try{ var c=t(i,!e);if(a&&a.length>0){for(var d=a.length,l=0;l<d;l++){c.push(a[l])}}o.apply(r,c)}catch(e){return void(u&&u.submitFromException&&u.submitFromException(e))}}var s=o.r&&o.r[e];return r=r||this,s&&(s.skipTimeout?a():n.setTimeout(a,0)),s}function t(e,r){return Array.prototype.slice.call(e,r?1:0)}var n=window;n.$Do||(n.$Do={"q":[],"r":[],"removeItems":[],"lock":0,"o":[]});var o=n.$Do;o.when=function(t,n){function i(e){r(e,a,s)||o.q.push({"id":e,"c":a,"a":s})}var a=0,s=[],u=1;"function"==typeof n||(a=n, u=2);for(var c=u;c<arguments.length;c++){s.push(arguments[c])}t instanceof Array?e(t,i):i(t)},o.register=function(e,t,n){if(!o.r[e]){o.o.push(e);var i={};if(t&&(i.method=t),n&&(i.skipTimeout=n),arguments&&arguments.length>3){i.extraArgs=[];for(var a=3;a<arguments.length;a++){i.extraArgs.push(arguments[a])}}o.r[e]=i,o.lock++;try{for(var s=0;s<o.q.length;s++){var u=o.q[s];u.id==e&&r(e,u.c,u.a)&&o.removeItems.push(u)}}catch(e){throw e}finally{if(0===--o.lock){for(var c=0;c<o.removeItems.length;c++){ for(var d=o.removeItems[c],l=0;l<o.q.length;l++){if(o.q[l]===d){o.q.splice(l,1);break}}}o.removeItems=[]}}}},o.unregister=function(e){o.r[e]&&delete o.r[e]}}(),function(e,r){function t(){if(!a){if(!r.body){return void setTimeout(t)}a=!0,e.$Do.register("doc.ready",0,!0)}}function n(){if(!s){if(!r.body){return void setTimeout(n)}t(),s=!0,e.$Do.register("doc.load",0,!0),i()}}function o(e){(r.addEventListener||"load"===e.type||"complete"===r.readyState)&&t()}function i(){ r.addEventListener?(r.removeEventListener("DOMContentLoaded",o,!1),e.removeEventListener("load",n,!1)):r.attachEvent&&(r.detachEvent("onreadystatechange",o),e.detachEvent("onload",n))}var a=!1,s=!1;if("complete"===r.readyState){return void setTimeout(n)}!function(){r.addEventListener?(r.addEventListener("DOMContentLoaded",o,!1),e.addEventListener("load",n,!1)):r.attachEvent&&(r.attachEvent("onreadystatechange",o),e.attachEvent("onload",n))}()}(window,document),function(){function e(){ return f.$Config||f.ServerData||{}}function r(e,r){var t=f.$Debug;t&&t.appendLog&&(r&&(e+=" '"+(r.src||r.href||"")+"'",e+=", id:"+(r.id||""),e+=", async:"+(r.async||""),e+=", defer:"+(r.defer||"")),t.appendLog(e))}function t(){var e=f.$B;if(void 0===d){if(e){d=e.IE}else{var r=f.navigator.userAgent;d=-1!==r.indexOf("MSIE ")||-1!==r.indexOf("Trident/")}}return d}function n(){var e=f.$B;if(void 0===l){if(e){l=e.RE_Edge}else{var r=f.navigator.userAgent;l=-1!==r.indexOf("Edge")}}return l}function o(e){ var r=e.indexOf("?"),t=r>-1?r:e.length,n=e.lastIndexOf(".",t);return e.substring(n,n+h.length).toLowerCase()===h}function i(){var r=e();return(r.loader||{}).slReportFailure||r.slReportFailure||!1}function a(){return(e().loader||{}).redirectToErrorPageOnLoadFailure||!1}function s(){return(e().loader||{}).logByThrowing||!1}function u(e){if(!t()&&!n()){return!1}var r=e.src||e.href||"";if(!r){return!0}if(o(r)){var i,a,s;try{i=e.sheet,a=i&&i.cssRules,s=!1}catch(e){s=!0}if(i&&!a&&s){return!0} if(i&&a&&0===a.length){return!0}}return!1}function c(){function t(e){g.getElementsByTagName("head")[0].appendChild(e)}function n(e,r,t,n){var u=null;return u=o(e)?i(e):"script"===n.toLowerCase()?a(e):s(e,n),r&&(u.id=r),"function"==typeof u.setAttribute&&(u.setAttribute("crossorigin","anonymous"),t&&"string"==typeof t&&u.setAttribute("integrity",t)),u}function i(e){var r=g.createElement("link");return r.rel="stylesheet",r.type="text/css",r.href=e,r}function a(e){ var r=g.createElement("script"),t=g.querySelector("script[nonce]");if(r.type="text/javascript",r.src=e,r.defer=!1,r.async=!1,t){var n=t.nonce||t.getAttribute("nonce");r.setAttribute("nonce",n)}return r}function s(e,r){var t=g.createElement(r);return t.src=e,t}function d(e,r){if(e&&e.length>0&&r){for(var t=0;t<e.length;t++){if(-1!==r.indexOf(e[t])){return!0}}}return!1}function l(r){if(e().fTenantBrandingCdnAddEventHandlers){var t=d($,r)?$:b;if(!(t&&t.length>1)){return r}for(var n=0;n<t.length;n++){ if(-1!==r.indexOf(t[n])){var o=t[n+1<t.length?n+1:0],i=r.substring(t[n].length);return"https://"!==t[n].substring(0,"https://".length)&&(o="https://"+o,i=i.substring("https://".length)),o+i}}return r}if(!(b&&b.length>1)){return r}for(var a=0;a<b.length;a++){if(0===r.indexOf(b[a])){return b[a+1<b.length?a+1:0]+r.substring(b[a].length)}}return r}function f(e,t,n,o){if(r("[$Loader]: "+(w.failMessage||"Failed"),o),E[e].retry<y){return E[e].retry++,v(e,t,n),void c._ReportFailure(E[e].retry,E[e].srcPath)}n&&n()} function h(e,t,n,o){if(u(o)){return f(e,t,n,o)}r("[$Loader]: "+(w.successMessage||"Loaded"),o),v(e+1,t,n);var i=E[e].onSuccess;"function"==typeof i&&i(E[e].srcPath)}function v(e,o,i){if(e<E.length){var a=E[e];if(!a||!a.srcPath){return void v(e+1,o,i)}a.retry>0&&(a.srcPath=l(a.srcPath),a.origId||(a.origId=a.id),a.id=a.origId+"_Retry_"+a.retry);var s=n(a.srcPath,a.id,a.integrity,a.tagName);s.onload=function(){h(e,o,i,s)},s.onerror=function(){f(e,o,i,s)},s.onreadystatechange=function(){ "loaded"===s.readyState?setTimeout(function(){h(e,o,i,s)},500):"complete"===s.readyState&&h(e,o,i,s)},t(s),r("[$Loader]: Loading '"+(a.srcPath||"")+"', id:"+(a.id||""))}else{o&&o()}}var p=e(),y=p.slMaxRetry||2,m=p.loader||{},b=m.cdnRoots||[],$=m.tenantBrandingCdnRoots||[],w=this,E=[];w.retryOnError=!0,w.successMessage="Loaded",w.failMessage="Error",w.Add=function(e,r,t,n,o,i){e&&E.push({"srcPath":e,"id":r,"retry":n||0,"integrity":t,"tagName":o||"script","onSuccess":i})},w.AddForReload=function(e,r){ var t=e.src||e.href||"";w.Add(t,"AddForReload",e.integrity,1,e.tagName,r)},w.AddIf=function(e,r,t){e&&w.Add(r,t)},w.Load=function(e,r){v(0,e,r)}}var d,l,f=window,g=f.document,h=".css";c.On=function(e,r,t){if(!e){throw"The target element must be provided and cannot be null."}r?c.OnError(e,t):c.OnSuccess(e,t)},c.OnSuccess=function(e,t){if(!e){throw"The target element must be provided and cannot be null."}if(u(e)){return c.OnError(e,t)}var n=e.src||e.href||"",o=i(),s=a();r("[$Loader]: Loaded",e);var d=new c ;d.failMessage="Reload Failed",d.successMessage="Reload Success",d.Load(null,function(){if(o){throw"Unexpected state. ResourceLoader.Load() failed despite initial load success. ['"+n+"']"}s&&(document.location.href="/error.aspx?err=504")})},c.OnError=function(e,t){var n=e.src||e.href||"",o=i(),s=a();if(!e){throw"The target element must be provided and cannot be null."}r("[$Loader]: Failed",e);var u=new c;u.failMessage="Reload Failed",u.successMessage="Reload Success",u.AddForReload(e,t), u.Load(null,function(){if(o){throw"Failed to load external resource ['"+n+"']"}s&&(document.location.href="/error.aspx?err=504")}),c._ReportFailure(0,n)},c._ReportFailure=function(e,r){if(s()&&!t()){throw"[Retry "+e+"] Failed to load external resource ['"+r+"'], reloading from fallback CDN endpoint"}},f.$Loader=c}(),function(){function e(){if(!$){var e=new v.$Loader;e.AddIf(!v.jQuery,y.sbundle,"WebWatson_DemandSupport"),y.sbundle=null,delete y.sbundle,e.AddIf(!v.$Api,y.fbundle,"WebWatson_DemandFramework"), y.fbundle=null,delete y.fbundle,e.Add(y.bundle,"WebWatson_DemandLoaded"),e.Load(r,t),$=!0}}function r(){if(v.$WebWatson){if(v.$WebWatson.isProxy){return void t()}m.when("$WebWatson.full",function(){for(;b.length>0;){var e=b.shift();e&&v.$WebWatson[e.cmdName].apply(v.$WebWatson,e.args)}})}}function t(){if(!v.$WebWatson||v.$WebWatson.isProxy){if(!w&&JSON){try{var e=new XMLHttpRequest;e.open("POST",y.url),e.setRequestHeader("Accept","application/json"), e.setRequestHeader("Content-Type","application/json; charset=UTF-8"),e.setRequestHeader("canary",p.apiCanary),e.setRequestHeader("client-request-id",p.correlationId),e.setRequestHeader("hpgid",p.hpgid||0),e.setRequestHeader("hpgact",p.hpgact||0);for(var r=-1,t=0;t<b.length;t++){if("submit"===b[t].cmdName){r=t;break}}var o=b[r]?b[r].args||[]:[],i={"sr":y.sr,"ec":"Failed to load external resource [Core Watson files]","wec":55,"idx":1,"pn":p.pgid||"","sc":p.scid||0,"hpg":p.hpgid||0, "msg":"Failed to load external resource [Core Watson files]","url":o[1]||"","ln":0,"ad":0,"an":!1,"cs":"","sd":p.serverDetails,"ls":null,"diag":h(y)};e.send(JSON.stringify(i))}catch(e){}w=!0}y.loadErrorUrl&&window.location.assign(y.loadErrorUrl)}n()}function n(){b=[],v.$WebWatson=null}function o(r){return function(){var t=arguments;b.push({"cmdName":r,"args":t}),e()}}function i(){var e=["foundException","resetException","submit"],r=this;r.isProxy=!0;for(var t=e.length,n=0;n<t;n++){var i=e[n];i&&(r[i]=o(i))} }function a(e,r,t,n,o,i,a){var s=v.event;return i||(i=l(o||s,a?a+2:2)),v.$Debug&&v.$Debug.appendLog&&v.$Debug.appendLog("[WebWatson]:"+(e||"")+" in "+(r||"")+" @ "+(t||"??")),L.submit(e,r,t,n,o||s,i,a)}function s(e,r){return{"signature":e,"args":r,"toString":function(){return this.signature}}}function u(e){for(var r=[],t=e.split("\n"),n=0;n<t.length;n++){r.push(s(t[n],[]))}return r}function c(e){for(var r=[],t=e.split("\n"),n=0;n<t.length;n++){var o=s(t[n],[]);t[n+1]&&(o.signature+="@"+t[n+1],n++),r.push(o) }return r}function d(e){if(!e){return null}try{if(e.stack){return u(e.stack)}if(e.error){if(e.error.stack){return u(e.error.stack)}}else if(window.opera&&e.message){return c(e.message)}}catch(e){}return null}function l(e,r){var t=[];try{for(var n=arguments.callee;r>0;){n=n?n.caller:n,r--}for(var o=0;n&&o<E;){var i="InvalidMethod()";try{i=n.toString()}catch(e){}var a=[],u=n.args||n.arguments;if(u){for(var c=0;c<u.length;c++){a[c]=u[c]}}t.push(s(i,a)),n=n.caller,o++}}catch(e){t.push(s(e.toString(),[]))} var l=d(e);return l&&(t.push(s("--- Error Event Stack -----------------",[])),t=t.concat(l)),t}function f(e){if(e){try{var r=/function (.{1,})\(/,t=r.exec(e.constructor.toString());return t&&t.length>1?t[1]:""}catch(e){}}return""}function g(e){if(e){try{if("string"!=typeof e&&JSON&&JSON.stringify){var r=f(e),t=JSON.stringify(e);return t&&"{}"!==t||(e.error&&(e=e.error,r=f(e)),(t=JSON.stringify(e))&&"{}"!==t||(t=e.toString())),r+":"+t}}catch(e){}}return""+(e||"")}function h(e){var r=[];try{ if(jQuery?(r.push("jQuery v:"+jQuery().jquery),jQuery.easing?r.push("jQuery.easing:"+JSON.stringify(jQuery.easing)):r.push("jQuery.easing is not defined")):r.push("jQuery is not defined"),e&&e.expectedVersion&&r.push("Expected jQuery v:"+e.expectedVersion),m){var t,n="";for(t=0;t<m.o.length;t++){n+=m.o[t]+";"}for(r.push("$Do.o["+n+"]"),n="",t=0;t<m.q.length;t++){n+=m.q[t].id+";"}r.push("$Do.q["+n+"]")}if(v.$Debug&&v.$Debug.getLogs){var o=v.$Debug.getLogs();o&&o.length>0&&(r=r.concat(o))}if(b){ for(var i=0;i<b.length;i++){var a=b[i];if(a&&"submit"===a.cmdName){try{if(JSON&&JSON.stringify){var s=JSON.stringify(a);s&&r.push(s)}}catch(e){r.push(g(e))}}}}}catch(e){r.push(g(e))}return r}var v=window,p=v.$Config||{},y=p.watson,m=v.$Do;if(!v.$WebWatson&&y){var b=[],$=!1,w=!1,E=10,L=v.$WebWatson=new i;L.CB={},L._orgErrorHandler=v.onerror,v.onerror=a,L.errorHooked=!0,m.when("jQuery.version",function(e){y.expectedVersion=e}),m.register("$WebWatson")}}(),function(){function e(e,r){ for(var t=r.split("."),n=t.length,o=0;o<n&&null!==e&&void 0!==e;){e=e[t[o++]]}return e}function r(r){var t=null;return null===u&&(u=e(i,"Constants")),null!==u&&r&&(t=e(u,r)),null===t||void 0===t?"":t.toString()}function t(t){var n=null;return null===a&&(a=e(i,"$Config.strings")),null!==a&&t&&(n=e(a,t.toLowerCase())),null!==n&&void 0!==n||(n=r(t)),null===n||void 0===n?"":n.toString()}function n(e,r){var n=null;return e&&r&&r[e]&&(n=t("errors."+r[e])),n||(n=t("errors."+e)),n||(n=t("errors."+c)),n||(n=t(c)),n} function o(t){var n=null;return null===s&&(s=e(i,"$Config.urls")),null!==s&&t&&(n=e(s,t.toLowerCase())),null!==n&&void 0!==n||(n=r(t)),null===n||void 0===n?"":n.toString()}var i=window,a=null,s=null,u=null,c="GENERIC_ERROR";i.GetString=t,i.GetErrorString=n,i.GetUrl=o}(),function(){var e=window,r=e.$Config||{};e.$B=r.browser||{}}(); //]]></script> <script type="text/javascript">//<![CDATA[ !function(t,e){!function(){var n=e.getElementsByTagName("head")[0];n&&n.addEventListener&&(n.addEventListener("error",function(e){null!==e.target&&"cdn"===e.target.getAttribute("data-loader")&&t.$Loader.OnError(e.target)},!0),n.addEventListener("load",function(e){null!==e.target&&"cdn"===e.target.getAttribute("data-loader")&&t.$Loader.OnSuccess(e.target)},!0))}()}(window,document); //]]></script> <link rel="prefetch" href="https://login.live.com/Me.htm?v=3" /> <link rel="shortcut icon" href="https://aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico" /> <script type="text/javascript"> ServerData = $Config; </script> <link data-loader="cdn" crossorigin="anonymous" href="https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_chy_qb6g1qbjbxlng2ytiq2.css" rel="stylesheet" /> <script data-loader="cdn" crossorigin="anonymous" src="https://aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_sN7sQ2KF_Z5xeg6T-3PHlw2.js" integrity='sha384-OkPwWBQ7jGCkV5gL8nFCRM6K0cPw/N3rZ1D9Rggb2Ity4bdfkLG7uWTaxRwC2LFa'></script> <script data-loader="cdn" crossorigin="anonymous" src="https://aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_uwo3eukwj1jimmqictgmkq2.js"></script> </head> <body data-bind="defineGlobals: ServerData, bodyCssClass" class="cb remove-segoe-ui-symbol" style="display: none"> <script type="text/javascript">//<![CDATA[ !function(){var e=window,o=e.document,i=e.$Config||{};if(e.self===e.top){o&&o.body&&(o.body.style.display="block")}else if(!i.allowFrame){var s=e.self.location.href,l=s.indexOf("#"),n=-1!==l,t=s.indexOf("?"),f=n?l:s.length,d=-1===t||n&&t>l?"?":"&";s=s.substr(0,f)+d+"iframe-request-id="+i.sessionId+s.substr(f),e.top.location=s}}(); //]]></script> </body> </html> Please refer to the Azure Active Directory SCIM provisioning documentation (https://docs.microsoft.com/en-us/azure/active-directory/app-provisioning/use-scim-to-provision-users-and-groups) and adapt the SCIM endpoint to be able to process provisioning requests from Azure Active Directory. Please check the service.

Additional context

The instance is running in Docker with Traefik as reverse proxy.

Authentication is set to use SAML as Primary login method.

[welcome[bot]]

👋 Thanks for opening your first issue here! If you're reporting a 🐞 bug, please make sure you include steps to reproduce it. We get a lot of issues on this repo, so please be patient and we will get back to you as soon as we can.

[senna-fox]

I have pretty the much exact same setup you do, and we're having this issue as well.

I generate an API key for the primary, non-SSO superadmin account & plug that into Azure. Provisioning works fine for a bit. Amount of time not confirmed, but most recently it lasted for a couple days. Eventually provisioning fails. Fix is to delete old API key (to prevent clutter) & generate a new one to plug into Azure. Doing this temporarily fixes things, but they'll fail again.

I can confirm the API keys survive through container recreates. Nothing else seems to be breaking, but it is going to be annoying to do this every time a new user has to be provisioned. Busy trying to get email working right now, so I can't provide any logs.