Comments (5)
denis99999
commented on July 18, 2024
@cert-x your configuration seems correct althrough I am not sure your ca-certificates is required (i.e. try to drop it), perhaps your STF server (resource server) is not able to reach the ADFS server (OAuth server) during the token validation step due to a missing firewall rule, you should take a network trace to see exactly what is happened.
from stf.
sn00wden
commented on July 18, 2024
@denis99999 thank you.
I'm able to reach adfs, then get authorize page, then receive token and get to the callback url page...with this error.
If I do not use ca-sertificates, I get next err:
TokenError: MSIS9612: The authorization code received in 'code' parameter is invalid.
at Strategy.OAuth2Strategy.parseErrorResponse (/app/node_modules/passport-oauth2/lib/strategy.js:373:12)
at Strategy.OAuth2Strategy._createOAuthError (/app/node_modules/passport-oauth2/lib/strategy.js:420:16)
at /app/node_modules/passport-oauth2/lib/strategy.js:177:45
at /app/node_modules/oauth/lib/oauth2.js:191:18
at passBackControl (/app/node_modules/oauth/lib/oauth2.js:132:9)
at IncomingMessage.<anonymous> (/app/node_modules/oauth/lib/oauth2.js:157:7)
at IncomingMessage.emit (node:events:539:35)
at endReadableNT (node:internal/streams/readable:1345:12)
at processTicksAndRejections (node:internal/process/task_queues:83:21)
But googling gives nothing, causer we have 1 node ADFS and SQL Server
from stf.
denis99999
commented on July 18, 2024
@cert-x it seems the code returned is invalid, you should request to ADFS support because it does not seem an issue from STF but between your resource server and the oAuth server (i.e. you should take a full network trace to identify that), sorry I am not able to help you anymore on that issue, what I can say is that it works well in my side using either oAuth 2.0 or SAML 2.0 protocols in front of my company Authentication servers.
from stf.
sn00wden
commented on July 18, 2024
@denis99999, hello!
What names of claims should we get from ADFS?
from stf.
denis99999
commented on July 18, 2024
@cert-x, I don't really understand your question, I don't know ADFS but what I understand is that ADFS is the authentication server that issued you an Oauth 2.0 partnership for ADFS, so if it does not work with STF, I suggest you contact the ADFS support team to verify your Oauth 2.0 partnership for ADFS and test it using a 3rd party baseline tool, I know some people use Postman for this!
from stf.
Related Issues (20)
- Use of Outdated and Insecure Algorithm DES-ECB to encrypt
- On pixel phone jp.co.cyberagent.stf could not be assigned a valid UID HOT 4
- STFService repeatedly prompts for installation on Xiaomi 11 Lite 5G HOT 8
- mac openstf and ldap auth fail (Authentication Failure for "test account") HOT 5
- i can't save screenshot on stf
- Can you have iOS landscape touch actions ? HOT 15
- Can't change keyboard input language
- 20~30 minutes after connecting to the stf device...?If there is no mouse or keyboard input, stf terminate HOT 16
- Unable to Logout in STF Frontend after Integration with Keycloak OAuth 2.0 HOT 2
- Disable Copy & Paste to/from Device
- No display screen HOT 8
- Screen Stream Stops Sending Data on Inactive Browser Tabs After 12-15 Minutes HOT 2
- Error while building docker image: rosetta error: failed to open elf at /lib64/ld-linux-x86-64.so.2 HOT 2
- When the window connected to STF is minimized, 'Terminated' occurs approximately 5 minutes later. HOT 11
- Still getting could not be assigned a valid UID HOT 5
- How to set up to login by password/SSO? HOT 1
- When deploying docker containers [email protected] HOT 1
- I can't find a way to change 'STF_ADMIN_EMAIL' HOT 5
- Android 15 and Android 14 with latest patch issue HOT 4
- All app minimize on stop controlling HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from stf.