Login error while trying to use Discourse as an identity provider (SSO, DiscourseConnect)

ygramoel · May 30, 2023, 3:45pm

One step further: if I turn on verbose loggin for DiscourseConnect, I do get an error in the logs:

Verbose SSO log: Signature parse error Bad signature for payload sso: bm9uY2U9YklKeEU1WWw2OFhjSkJydGlwSU15UTRZeVlMeWd6ZzQyUU9mOFo0SWF5QSZyZXR1cm5fc3NvX3VybD1odHRwczovL2VtYmVldGxlLmNvbS8jYWNjb3VudA=

One notable point is that the payload mentioned in the log is not URL-encoded (note the ‘=’ at the end) and is missing the second ‘=’ of the URL-encoded data (note the repeated %3D at the end of the original payload).

Topic		Replies	Views
Discourse as SSO Provider: Login Error sso	2	1272	May 28, 2020
WP as DiscourseConnect client: Signature parse error/Bad signature error (solved) wordpress	1	712	August 29, 2022
SSO incorrect nonce sso	4	1114	April 26, 2023
Setup DiscourseConnect - Official Single-Sign-On for Discourse (sso) admins sso , discourseconnect , configuring , how-to	0	420567	February 25, 2014
Login error sso	18	1381	July 11, 2023

Login error while trying to use Discourse as an identity provider (SSO, DiscourseConnect)

Related Topics