aws-adfs icon indicating copy to clipboard operation
aws-adfs copied to clipboard

Published 20 hours ago verified publisher icon venth

Failed to establish a new connection: [Errno 11001] getaddrinfo failed'))

Open CloudViking86 opened this issue 2 years ago • 1 comments

Hello,

First time trying out this project so I might have missed something but I don't believe I have. Running v.2.0.1 from Windows 10 (Ver: 21H2 Build: 19044.1586)

Trying to login against our ADFS by running (in PowerShell); aws-adfs login --adfs-host=https://sso.mycompany.com/adfs/ls/idpInitiatedSignOn.aspx?loginToRp=urn:my:urn --role-arn=<our-arn> --region=eu-west-1

but this fails directly with the following error:

Traceback (most recent call last):
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\connection.py", line 174, in _new_conn
    conn = connection.create_connection(
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\util\connection.py", line 72, in create_connection
    for res in socket.getaddrinfo(host, port, family, socket.SOCK_STREAM):
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\socket.py", line 955, in getaddrinfo
    for res in _socket.getaddrinfo(host, port, family, type, proto, flags):
socket.gaierror: [Errno 11001] getaddrinfo failed

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\connectionpool.py", line 703, in urlopen
    httplib_response = self._make_request(
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\connectionpool.py", line 386, in _make_request
    self._validate_conn(conn)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\connectionpool.py", line 1040, in _validate_conn
    conn.connect()
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\connection.py", line 358, in connect
    self.sock = conn = self._new_conn()
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\connection.py", line 186, in _new_conn
    raise NewConnectionError(
urllib3.exceptions.NewConnectionError: <urllib3.connection.HTTPSConnection object at 0x00000206BD8F22C0>: Failed to establish a new connection: [Errno 11001] getaddrinfo failed

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\requests\adapters.py", line 440, in send
    resp = conn.urlopen(
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\connectionpool.py", line 785, in urlopen
    retries = retries.increment(
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\urllib3\util\retry.py", line 592, in increment
    raise MaxRetryError(_pool, url, error or ResponseError(cause))
urllib3.exceptions.MaxRetryError: HTTPSConnectionPool(host='https', port=443): Max retries exceeded with url: //sso.mycompany.com/adfs/ls/idpInitiatedSignOn.aspx?loginToRp=urn:my:urn/adfs/ls/IdpInitiatedSignOn.aspx?loginToRp=urn:my:urn (Caused by NewConnectionError('<urllib3.connection.HTTPSConnection object at 0x00000206BD8F22C0>: Failed to establish a new connection: [Errno 11001] getaddrinfo failed'))

During handling of the above exception, another exception occurred:

Traceback (most recent call last):
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\runpy.py", line 196, in _run_module_as_main
    return _run_code(code, main_globals, None,
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\runpy.py", line 86, in _run_code
    exec(code, run_globals)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\Scripts\aws-adfs.exe\__main__.py", line 7, in <module>
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\click\core.py", line 1130, in __call__
    return self.main(*args, **kwargs)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\click\core.py", line 1055, in main
    rv = self.invoke(ctx)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\click\core.py", line 1657, in invoke
    return _process_result(sub_ctx.command.invoke(sub_ctx))
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\click\core.py", line 1404, in invoke
    return ctx.invoke(self.callback, **ctx.params)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\click\core.py", line 760, in invoke
    return __callback(*args, **kwargs)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\aws_adfs\login.py", line 188, in login
    principal_roles, assertion, aws_session_duration = authenticator.authenticate(config, assertfile=assertfile)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\aws_adfs\authenticator.py", line 15, in authenticate
    response, session = html_roles_fetcher.fetch_html_encoded_roles(
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\aws_adfs\html_roles_fetcher.py", line 102, in fetch_html_encoded_roles
    response = session.post(
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\requests\sessions.py", line 577, in post
    return self.request('POST', url, data=data, json=json, **kwargs)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\requests\sessions.py", line 529, in request
    resp = self.send(prep, **send_kwargs)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\requests\sessions.py", line 645, in send
    r = adapter.send(request, **kwargs)
  File "C:\Users\my.user\AppData\Local\Programs\Python\Python310\lib\site-packages\requests\adapters.py", line 519, in send
    raise ConnectionError(e, request=request)
requests.exceptions.ConnectionError: HTTPSConnectionPool(host='https', port=443): Max retries exceeded with url: //sso.mycompany.com/adfs/ls/idpInitiatedSignOn.aspx?loginToRp=urn:my:urn/adfs/ls/IdpInitiatedSignOn.aspx?loginToRp=urn:my:urn (Caused by NewConnectionError('<urllib3.connection.HTTPSConnection object at 0x00000206BD8F22C0>: Failed to establish a new connection: [Errno 11001] getaddrinfo failed'))

Entering the same URL as I enter when launching aws-adfs in my browser; https://sso.mycompany.com/adfs/ls/idpInitiatedSignOn.aspx?loginToRp=urn:my:urn then I get directed to AWS and is prompted to select a role.

If I try and use the Windows equivalent of curl - Invoke-WebRequest - I get a "200" response; Invoke-Webrequest -Method GET -Uri https://sso.mycompany.com/adfs/ls/idpInitiatedSignOn.aspx?loginToRp=urn:my:urn -UseBasicParsing

So the URL is reachable and good and works using a browser, why can't I access it when using aws-adfs?

Sorry if this is something elementary.

Best Regards

CloudViking86 avatar Apr 01 '22 14:04 CloudViking86

--adfs-host is looking for a host name, not a URL. try --adfs-host=sso.mycompany.com

mattmauriello avatar May 18 '22 19:05 mattmauriello