I’ve enabled SSO on our new Discourse site and I’m trying to create the SSO server but I’m getting kinda stuck.
Whenever I go to the forum I get immediately redirected to the sso page.
EDIT: Fixed the immediate redirect I had
login required enabled.
Then when I redirect to the forum I get a message that says
Account login timed out, please try logging in again.
When I check the logs I see
Verbose SSO log: Nonce has already expired nonce: name: username: email: avatar_url: avatar_force_update: require_activation: bio: external_id: return_sso_url: admin: moderator: suppress_
I don’t really understand why it’s expired and it doesn’t let me access the forum anymore.
I haven’t fully implemented the SSO page it just fills in some temporary hardcoded data in the payload now but I don’t see why that would be the issue for this behavior because if I would return the data of a logged in user it would be exactly the same data.
This is the code I wrote for the SSO server for testing.