Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

default-authentication-identification Source selection not saved #12597

Open
falkheiland opened this issue Jan 8, 2025 · 0 comments
Open

default-authentication-identification Source selection not saved #12597

falkheiland opened this issue Jan 8, 2025 · 0 comments
Labels
bug Something isn't working

Comments

@falkheiland
Copy link
Contributor

falkheiland commented Jan 8, 2025
edited
Loading

Describe the bug
i am trying to implement kerberos SPNEGO with LDAP as user sync source.
followed instruction and #2791 . i am trying to set the Kerberos Source in Flows and Stages -> Stages -> default-authentication-identification -> Source settings: add Source Kerberos -> Update - this is not beeing saved

To Reproduce

  • when checking that same setting afterwards the "Kerberos" Source is again under Available Sources and not under Selected sources.
  • on the login page i see the Kerberos icon below the password field, but using it results in:

SPNEGO authentication required

and

Source-Map-Fehler: No sources are declared in this source map.

Expected behavior
working login

Screenshots

setting the source:

grafik

check, after "update" (saving)

grafik

Logs

firefox dev tools console output:

authentik/ws: closed ws connection 
close { target: WebSocket, isTrusted: true, wasClean: true, code: 1001, reason: "", srcElement: WebSocket, currentTarget: WebSocket, eventPhase: 2, bubbles: false, cancelable: false, … }
FlowInterface-2024.12.1.js:21:33186
GET
https://auth.example.com/source/kerberos/kerberos-examplecom/?state=GFTZBwvgNLFV0HAMjtccn8ZaiX1axOUF
[HTTP/1.1 401 Unauthorized 163ms]

authentik/ws: reconnecting ws in 400ms FlowInterface-2024.12.1.js:21:33414
Uncaught SyntaxError: JSON.parse: unexpected end of data at line 1 column 1 of the JSON data
    <anonymous> https://auth.example.com/source/kerberos/kerberos-bfwlocal/?state=GFTZBwvgNLFV0HAMjtccn8ZaiX1axOUF:26
kerberos-examplecoml:26:22
Error: An unexpected error occurred spoofer.js:1:38935
authentik(early): version 2024.12.1, apiBase https://auth.example.comapi/v3 config.ts:89:8
Source-Map-Fehler: No sources are declared in this source map.
Ressourcen-Adresse: https://auth.example.com/static/dist/standalone/loading/chunk-LTEQ7OUJ.js
Source-Map-Adresse: chunk-LTEQ7OUJ.js.map```

**Version and Deployment (please complete the following information):**

-   authentik version: 2024.12.1
-   Deployment: docker-compose
-   Kerberos: Windows AD

authentik-app docker output at the moment of setting the source and pressing update:

INF action=model_updated auth_via=session client_ip=192.168.0.1 context={"http_request":{"args":{},"method":"PUT","path":"/api/v3/stages/identification/99d76a4c-3342-49c5-8914-e69e6fcd4548/","request_id":"66d44875d4c8482eae34b3f3803a4c54","user_agent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0"},"model":{"app":"authentik_stages_identification","model_name":"identificationstage","name":"default-authentication-identification","pk":"99d76a4c334249c58914e69e6fcd4548"}} domain_url=auth.example.com event=Created Event host=auth.example.com logger=authentik.events.models pid=53 request_id=66d44875d4c8482eae34b3f3803a4c54 schema_name=public timestamp=2025-01-08T12:48:02.075023 user={"email":"[email protected]","pk":4,"username":"akadmin"}

INF auth_via=session domain_url=auth.example.com event=Task published host=auth.example.com logger=authentik.root.celery pid=53 request_id=66d44875d4c8482eae34b3f3803a4c54 schema_name=public task_id=e47754ba7a784b34bc5e46cd8fa6feaf task_name=authentik.events.tasks.event_notification_handler timestamp=2025-01-08T12:48:02.124660

INF auth_via=session domain_url=auth.example.com event=/api/v3/stages/identification/99d76a4c-3342-49c5-8914-e69e6fcd4548/ host=auth.example.com logger=authentik.asgi method=PUT pid=53 remote=192.168.0.1 request_id=66d44875d4c8482eae34b3f3803a4c54 runtime=170 schema_name=public scheme=https status=200 timestamp=2025-01-08T12:48:02.142890 user=akadmin user_agent=Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0

INF auth_via=session domain_url=auth.example.com event=/api/v3/stages/identification/99d76a4c-3342-49c5-8914-e69e6fcd4548/ host=auth.example.com logger=authentik.asgi method=GET pid=53 remote=192.168.0.1 request_id=a1f37db2ec7f4f1eb9f5120ba6f76aad runtime=67 schema_name=public scheme=https status=200 timestamp=2025-01-08T12:48:02.260394 user=akadmin user_agent=Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0

INF auth_via=session domain_url=auth.example.com event=/api/v3/stages/all/?ordering=name&page=1&page_size=20&search= host=auth.example.com logger=authentik.asgi method=GET pid=54 remote=192.168.0.1 request_id=b2f91f480fee413f9f08c4f1e26dcf1f runtime=132 schema_name=public scheme=https status=200 timestamp=2025-01-08T12:48:02.329146 user=akadmin user_agent=Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
@falkheiland falkheiland added the bug Something isn't working label Jan 8, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@falkheiland