Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Invitation process is silently failing sometimes

See original GitHub issue

What version of UAA are you running?

{
"app": {
"version": "4.19.2"
},
...
}

How are you deploying the UAA?

Official Maven JAR from Maven Central

What did you do?

We are using user invitation process.

What did you expect to see? What goal are you trying to achieve with the UAA?

We expect to be redirected to provided redirect_url and new user to be activated after he sets his password.

After the user types password a call is made to: POST /invitations/accept.do This call should cause a redirect to /login?success=invite_accepted&form_redirect_uri=<redirect_uri>

What did you see instead?

In most of the cases result of the invitation process after a call to: POST /invitations/accept.do is causing a redirect to <uaa_host>/login This redirect is missing all query parameters, so there is no redirect uri.

Also, in this case, the invitation process for this user is NOT finished, and the user is not able to login.

After a few retries, it is possible to achieve a successful invitation process.

The only thing logged in uaa logs that is relevant to this issue is: [12/Sep/2018:12:39:14 +0000] "POST /invitations/accept.do HTTP/1.1" 302 - 4

Additional information

HTTP respone code for both successfull and failed request is 302

Success result of POST /invitations/accept.do - response headers

cache-control: no-cache, no-store, max-age=0, must-revalidate
content-language: en-GB
content-length: 0
date: Wed, 12 Sep 2018 12:40:06 GMT
expires: 0
location: /login?success=invite_accepted&form_redirect_uri=<redirect_uri>
pragma: no-cache
server: openresty
status: 302
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block

Broken result of POST /invitations/accept.do - response headers

cache-control: no-cache, no-store, max-age=0, must-revalidate
content-length: 0
date: Wed, 12 Sep 2018 12:32:56 GMT
expires: 0
location: <uaa_host>/login
pragma: no-cache
server: openresty
status: 302
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block