Skip to content
This repository was archived by the owner on Feb 27, 2021. It is now read-only.

You are not allowed to access this site with account [ ]. Issuer was [ ]. #1

Open
vaibhavmalushte opened this issue Nov 21, 2017 · 1 comment
Open

You are not allowed to access this site with account [ ]. Issuer was [ ]. #1

vaibhavmalushte opened this issue Nov 21, 2017 · 1 comment

Comments

@vaibhavmalushte
Copy link

Hi,

I am getting below error.

You are not allowed to access this site with account [ ]. Issuer was [ ].

Kindly advise.

Thank you,
Vaibhav
@gotdibbs
Copy link

gotdibbs commented Jan 30, 2018
edited
Loading

I'm a .NET dev with limited PHP experience, but I also just received this error and was able to work around it. I by no means understand the inner workings of PHP or MediaWiki, but this is what I did:

  1. The variable $wgAuthRemoteuserIssuers in the AuthAzureEasyAuth.php should actually be $wgAuthAzureEasyAuthIssuers.
  2. I had no claim provided by Azure AD for UPN. I used the emailaddress claim instead as seen below.
private function getUpn()
{
    #return $this->getClaim("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn");
    return $this->getClaim("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress");
}

@vaibhavmalushte I think you may have even more issues thought as your issuer is coming across blank. Mine came through matching the value from LocalSettings.php.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@vaibhavmalushte @gotdibbs