pablo
August 2, 2022, 11:06am
4
@infodata There is a bug in SAML authentication in version 2.1.0. It has already been reported to the dev team and they are currently working on it according to the bug.
opensearch-project:main
← pc-jedi:fix-routes
opened 11:05AM - 31 Jan 22 UTC
### Description
In the documentation for [SAML](https://opensearch.org/docs/lat… est/security-plugin/configuration/saml/#opensearch-dashboards-configuration) the SSO URL and the white listed URL is already updated to `_plugins/_security` while the routes in the security plugin still are on `_opendistro/_security`. That causes a 404 response when trying to login.
This PR changes the route in the plugin and aligns with the documentation.
### Category
Bug fix and Documentation
### Why these changes are required?
To align with the new naming schema and have it working like it is documented.
### What is the old behavior before changes and new behavior after changes?
Before this PR the whitelisted URLs for SSO have to be set to `_opendistro/_security/..` also the configuration in the IdP to forward to the correct endpoint had to be `_security/saml/acs`.
New behavior is that the URLs are now aligned with the documentation.
### Issues Resolved
#836
### Testing
[Please provide details of testing done: unit testing, integration testing and manual testing]
### Check List
- [ ] New functionality includes testing
- [x] New functionality has been documented
- [x] Commits are signed per the DCO using --signoff
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check [here](https://github.com/opensearch-project/OpenSearch/blob/main/CONTRIBUTING.md#developer-certificate-of-origin).
This is only present in version 2.1.0. Could you try version 2.0.1 instead?