Could not authenticate you from SAML because "Actioncontroller::invalidauthenticitytoken"

pppasantos · January 8, 2023, 2:55am

Hello, I’m having trouble logging into my gitlab instance using SAML with okta. I believe that the login is successful, after clicking on the ‘oktaSSO’ button I am redirected to okta and enter with my credentials, after being validated they are sent again to gitlab, but for some reason gitlab cannot redirect me inside after ‘okay’ do okta. I’m using only one instance of redis. and I already tried to put the flag skip_before_action :verify_authenticity_token. But it already exists in the controllers… So it didn’t work, I’m running out of alternatives. Can anybody help me?

Environment

Ubuntu 20.04.5 LTS

okta

Gitlab server

Login Page

nightman68 · January 8, 2023, 4:16pm

It looks like that your provider is signing the requests, have a look here.

pppasantos · January 9, 2023, 10:32am

Well our gitlab is hosted at aws, and i cant get private key from ACM. is there any other way?

nightman68 · January 9, 2023, 5:56pm

What about disabling the signing of the requests inside the SAML provider? It’s optional.

pppasantos · January 9, 2023, 6:33pm

I disabled the signing of the requests in Okta, nothing change. =`(

pppasantos · January 10, 2023, 1:18pm

Anyone else have any tips to help me?

Topic		Replies	Views
Enable SAML Authentication General	0	364	December 24, 2021
Error 404 in callback after successful SAML authentication Self-managed omnibus , omniauth , login	1	1068	May 3, 2022
Cannot login on Gitlab support How to Use GitLab	6	851	February 17, 2021
Okta Support for GitLab hosted? Self-managed oauth	3	1557	September 9, 2019
Omnibus Gitlab Okta SSO integration issue How to Use GitLab	2	388	February 27, 2019

Could not authenticate you from SAML because "Actioncontroller::invalidauthenticitytoken"

Related topics