Kibana doesn't redicrt to login-page

Hello.

We are using OD + Kibana v1.11.0 with security plugin enabled.
kibana.yml:
opendistro_security.auth.type: “openid”
opendistro_security.openid.connect_url: https://dex-kibana/.well-known/openid-configuration
opendistro_security.openid.client_id: “dexkibana”
opendistro_security.openid.client_secret: “some_secret”
opendistro_security.openid.base_redirect_url: “https://kibana/
opendistro_security.openid.scope: “openid profile email offline_access groups”
opendistro_security.cookie.secure: true
opendistro_security.cookie.password: “cookie_pass”
elasticsearch.requestHeadersWhitelist: [“Authorization”, “securitytenant”, “security_tenant”, “x-forwarded-for”, “x-forwarded-by”]
and everything works fine except for one!

When an unauthorized user tries to open the link https:// kibana/goto/XXXX he gets a 403 page instead of a login page.
Please help to solve this issue!

Thank you.

Hi @boris.uzhinskiy the 403 usually happens after login, Are you able to paste that kibana link in a private browser (incognito) and provide the error here?

I get something similar when I go to a saved url without being logged in first:
https://kibana.somewhere.com/goto/505aad34813bf31802515b91f9b0161c
Always results in a 401:
{“statusCode”:401,“error”:“Unauthorized”,“message”:“Authentication required”}

One would assume that this should redirect to the login page first right?

Hi @Anthony !
I got the same result :
{“statusCode”:403,“error”:“Forbidden”,“message”:“Request failed authentication.”}

@boris.uzhinskiy Do you have anything running in front of kibana? A load balancer maybe? Also can you provide your full kibana.yml file? (redact any sensitive parts)