I want to avoid this error from appearing - Account login timed out, please try logging in again. This error appears when the payload of SSO login has expired. I was thinking if i could redirect the user to any other page when this error occurs or is their any other better solution. Does any body have a solution for this?
How to avoid "Account login timed out, please try logging in again" when the payload had expired in SSO
I am still looking for a solution of this topic.
I haven’t tested it but there is an SSO setting for a redirect on failed login. Maybe this will help you.
The error message should be fixed, though. It should at least contain a link back to the Discourse Login page.
@fbender, I looked into admin panel for the SSO setting on a failed login but I cannot find it. Can you please tell me where is this setting.
I think he is referring to
sso not approved url.
Yeah I tested it myself and it did not work. Question is whether it actually should work. @techAPJ
sso not approved url setting is used when the SSO login is successful but the Admin has enabled
must approve users setting and the user has not been approved yet.
Looking at the current code:
I don’t think it’s possible to redirect user to any other page.
EDIT: I may wire up a setting that could make this possible. @sam should I go ahead and add a setting
sso_timeout_expired_url for this case? Is this something we should have?
Implementing SSO, nonce immediately expires
First fix is to present a proper error page there as opposed to 1 line of text
Wouldn’t a proper reaction be to just redirect back to the SSO login URL?
Assuming my login on the external site is still valid (e.g. I was just taking too long to log in there), this would actually log me in immediately, just with an additional roundtrip. If the login on the external site expired in the meantime, I have to authenticate again – but this is what I want to to, since I was just trying to login anyway.
SSO Plugin Account login timed out, please try logging in again
How long does the nonce last and is that configurable? Depending on if the user is authenticated in the the SSO provider already it may take them to long if they have to actually log in.
Per the spec, the nonce is valid for 10 minutes:
Ok that is interesting. Because I have gotten that message in less than 30 seconds.
This has become a systemic problem for me. When the server first comes up things are ok. With any kind of load, every new user registering with sso is getting this Account Login timed out error. I tried upgrading to the latest version of Discourse today. The problem is still occurring.
This sounds very odd to me, we only show that message if it took upwards of 10 minutes to run through stuff in your side. What forum is this happening on? Can it be reproduced on demand?
If you register at trade.abecorn.com, the first thing I do is initiate the sso to discourse on successful login. That transitions to discourse.abecorn.com then back to trade.abecorn.com once registration in discourse is complete. That flow is often blocked with the timeout error. It is happening sporadically now throughout the day.
It seems every time I mention I run discourse for abecorn.com I get no more responses. Would it help if I mention I am also lead architect for the State of MN at DEED; in charge of making technology buying decisions?
Well, we could diagnose this for you if you signed up for our hosting, we host 100s of discourse sites and I have not seen this particular issue.
Reason I stopped responding is that I am stumped and need access to the system, logs, and a repro