Existing users can't login via OAuth/Keycloak #34184
Comments
|
Yeah i faced same issue today one time of not logging in it doing reconnecting again and again |
|
Please check with 7.0.1 |
Even better you should test with 7.1.0 - as per the bug guidelines "always test on the latest release" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
and others
Description:
To initially access Rocketchat, users must log in through Keycloak, which is how accounts are provisioned. This functionality generally works without issue.
However, the problem arises seemingly at random. Users with existing Keycloak-created accounts are sometimes unable to successfully log in to Rocketchat. There are no error messages, password update prompts, or other indications of the issue. When the user attempts to log in through Keycloak, they are simply redirected back to the login page without gaining access.
According to Keycloak, these users have an active session for Rocketchat, but no corresponding cookies or tokens are set in the browser. As a result, the users cannot log in.
This issue forces the administrator to manually provision local Rocketchat accounts by manually resetting their password for affected users through the UI, which is an undesirable workaround.
I've tried reproducing this bug but I can't seem to find the exact cause.
Steps to reproduce:
Expected behavior:
The expected behavior is that the user is logged in successfully.
Actual behavior:
Unsuccessful log in to Rocketchat
Server Setup Information:
Client Setup Information
Happens in different browsers, on different versions and different operating systems.
Additional context
This issue has been around for at least 1.5-2 years, the user was able to log in fine via Keycloak until that bug occurred, no configuration settings were modified in either Rocketchat or Keycloak for affected users.
The text was updated successfully, but these errors were encountered: