SonarQube upgrade to 2025.1.0 impacting SAML Okta authentication

Hello Colin,

Thank you for your response!
Exactly, upon checking the logs, I found that the recipient URL diverge:

Failed to match SubjectConfirmationData@Recipient to any supplied valid recipients: [http://localhost:9000/oauth2/callback/saml]

I fixed this issue by overriding the property Server base URL under Administration > Configuration > General > General in the UI with the current URL of our SonarQube.

If the deployment is done via Helm chart, it can be overridden like below (via the config map):

sonarqube:
  sonarProperties:
    sonar.core.serverBaseURL: "https://sonar.company.io/"

I suggest to add this information to the upgrade release, as it can create a breaking change when upgrading versions, especially when in previous versions we were not used to override this property.
Oumayma.