Sonarqube -> SAML with JumpCloud

Bruno_Rocha · October 4, 2022, 9:03pm

Good evening!

Has anyone managed to configure SAML with JumpCloud?

I configured it recently, but it doesn’t work as it should.
Whenever I try to connect through SAML, I get the message: You’re not authorized to access this page. Please contact the administrator.

Version SQ 9.6

Colin · October 6, 2022, 8:55am

Hey there.

You should find more inforamtion about what is causing the failure by checking your web.log file (and ramping up the Log Level in Administration > System > Log Level)

Bruno_Rocha · October 6, 2022, 1:34pm

Hi Colin!

Thanks for your fast reply.

The logs are not unclear about the problem, when I click to log in with I receive the error message above and return to this URL https://my.server/sessions/unauthorized

What I try to do was create a user in SQ to match the user that comes from my IDP. This doesn’t work.

In the log file, I found these lines

[06/Oct/2022:13:07:33 +0000] “GET /sessions/init/saml?return_to=%2F HTTP/1.1” 302 - “https://my.domain/sessions/new?return_to=%2F” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36” “AYNxYcqMkzWUvCMGAK5L”

[06/Oct/2022:13:07:34 +0000] “POST /oauth2/callback/saml HTTP/1.1” 302 - “https://sso.jumpcloud.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36” “AYNxYcqMkzWUvCMGAK5M”

[06/Oct/2022:13:07:34 +0000] “GET /sessions/unauthorized HTTP/1.1” 200 - “https://sso.jumpcloud.com/” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36” “AYNxYcqMkzWUvCMGAK5N”

[06/Oct/2022:13:07:35 +0000] “GET /api/l10n/index?locale=pt-BR HTTP/1.1” 200 - “https://my.domain/sessions/unauthorized” “Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/106.0.0.0 Safari/537.36” “AYNxYcqMkzWUvCMGAK5O”

PS: I change my real server name, to my.domain for security purposes.

Could you help me?

I can send a print screen of my setup fields in the SQ and Jumpcloud.

Colin · October 11, 2022, 9:04am

Those are log lines from your access.log file, rather than web.log

Ofir · December 27, 2022, 1:17pm

Hi, did you by any chance find answer for the question?
I got the same problem and can’t find any solution.