Jwt error in opensearch

taltsafrir · January 3, 2023, 3:06pm

hi, we are using saml with okta, and after an hour we are getting this error on the servers.
opensearch dashboard is getting 500
com.amazon.dlic.auth.http.jwt.keybyoidc.BadCredentialsException: The token has expired

pablo · January 9, 2023, 3:50pm

@taltsafrir Could you share your current config.yml?

taltsafrir · January 10, 2023, 6:11pm

pablo · January 12, 2023, 2:17pm

@taltsafrir I’ve tested your config with the latest OS 2.4.1 and I get the same issue.
The settings from opensearch_dashboards.yml posted in the first comment are valid only for basicauth and LDAP authentication domains.

As you’ve already noticed, this issue has been already reported to the dev team.

Topic		Replies	Views
Opensearch session keepalive when using SAML (okta) Security troubleshoot	3	403	January 4, 2023
How to configure session timeout in kibana with using openid for SSO Security troubleshoot	8	1885	June 23, 2022
JWT authentication: kibana rejects valid tokens after session expiry Security	3	1418	September 24, 2019
JWT token size with Security	2	340	January 31, 2023
Kibana - Session timeout [Solved] Security troubleshoot	6	8307	January 13, 2022

Jwt error in opensearch

Related Topics