Hi, I’m doing a test where I’m switching Sonar from LDAP to SAML, however SAML authentication is not working and it’s driving me crazy :slight_smile: The error i’m getting is: DEBUG web[AZHW/vlus4sveQHZAADF][auth.event] login failure [cause|CSRF state value is invalid][method|OAUTH2][provider|EXTE…

Thanks, @Colin . After numerous attempts, something strange happened — just once, and only once, the error changed to Cookie ‘OAUTHSTATE’ is missing — now that was an error I recognized. :blush: After tweaking the identity provider to enable service-initiated SSO, I was finally able to log in succe…

Unable to login using SAML (CSRF state value is invalid)

SonarQube Server / Community Build

Colin (Colin) September 10, 2024, 12:43pm 2

Hey there.

Sometimes the “true” error lies right before CSRF state value is invalid, and can be found in the logs (specifically web.log).

That happened in this thread (the real issues was idp_cert_or_fingerprint_not_found_and_required)

Do you see anything else int he logs?

HTTP Status 500 – Internal Server Error getting error in 2025.1.0-enterprise

Topic		Replies	Views
SAML CSRF state value is invalid SonarQube Server / Community Build saml	9	1736	December 21, 2022
SAML IDP Initiated Login SonarQube Server / Community Build authentication , sso , saml	24	9838	March 14, 2024
No provider key found in URI SonarQube Server / Community Build sso , saml	14	7906	August 19, 2022
Could not validate timestamp: not yet valid. Check system clock. not able to login with SAML SonarQube Server / Community Build sonarqube , authentication , saml , sonarqube-team	1	1143	August 2, 2021
Sonarqube SAML Integration SonarQube Server / Community Build saml	8	2992	September 14, 2022

Unable to login using SAML (CSRF state value is invalid)

Related topics