product-is
product-is copied to clipboard
wso2
No prompt shown to enter Email OTP
Describe the issue:
When an SP is configured with Email OTP, at the login after submitting the username and password instead of presenting the screen to enter the OTP, the browser is redirected to <IS_SERVER>:<PORT>/carbon/admin/login.jsp. After logging in with credentials again, Error 405 - Method Not Allowed is shown.
How to reproduce:
-
Enable email sending module and configure the Email OTP identity provider.
-
Deploy saml2-web-app-pickup-dispatch sample webapp and configure it as a service provider.
-
Configure Local & Outbound Authentication Configuration --> Advanced Configuration of the SP as follows.
-
Create user and edit profile to include the email address.
-
Login to saml2-web-app-pickup-dispatch.
Expected behavior: After submitting the username and the password, the screen to enter the OTP should be loaded.
Environment information :
- Product Version: IS 6.0.0-m1
- OS: Mac OS 12.3.1
- Database: Oracle 12c
- Userstore: JDBC
Thank you for reporting this issue.
Tested this on IS 6.0.0-m1 pack. Here the issue is EmailOTP authentication Endpoint URL is incorrect. The URL should be https://localhost:9443/authenticationendpoint/email_otp.do.
I sent a PR to update the sample configuration in the documentation: https://github.com/wso2/docs-is/pull/3019
The PR was sent to the incorrect branch. In 5.11.0, the email otp endpoint is a separate webapp. This change should be pushed to master only.
@asha15 Please close this issue once you send the doc PR for 6.0.0 and revert from 5.11.0
@rksk Thank you for pointing out. I reverted the changes [1] and 6.0.0 doc was updated with the correct email endpoint[2].
[1] https://github.com/wso2/docs-is/pull/3246 [2] https://github.com/wso2/docs-is/blob/master/en/docs/guides/mfa/2fa-email-otp.md