Expand my Community achievements bar.

SAML authentication handler contains unsafe inline script - Unable to redirect to Okta login page

Avatar

Level 1
Level 1
6/25/24 1:54:07 PM

We are using a nonce worker to avoid loading inline scripts,
But SAML authentication handler contains a form that redirects to the OKTA login page.
This form includes an unsafe inline script, which prevents the page from rendering and redirects to the OKTA login page.

 

rajsamalahgs_0-1719348663548.png

 

Any one have faced this issue?

Views

75

Replies

1
Sign in to like this content

Total Likes

Translate
Translate
1 Reply

Avatar

Community Advisor
Community Advisor
6/26/24 3:08:08 AM

HI @rajsamala-hgs ,

Please check server side configuration for SAML Authentication handler generally we configure a SAML authentication handler in AEM to act as a proxy for Okta authentication. This handler will redirect users to Okta's login page, handle the OAuth 2.0 PCKE flow, and exchange the authorization code for an access token and ID token.
Also, utilize Sling Resource Access Control (Sling RAC) to protect specific routes or resources. Configure Sling RAC rules to restrict access to these protected areas based on the presence of a valid Okta access token.


-Tarun

Views

28

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
How to access clientlibs in ui.apps from other js file in ui.frontend Solved

Views

122

Likes

0

Replies

3
The values in classic dialog are not getting saved for all the components on certain page path in 6.5

Views

52

Likes

0

Replies

1
Multifield Values Not Appearing in Page model.json in AEM Remote SPA

Views

96

Likes

0

Replies

3
how to handle docstate metadata property

Views

110

Likes

0

Replies

4
How to search the assets by using the ID in the Asset Property Advance Tab

Views

99

Likes

0

Replies

1