Display an error message when issuer context is not restored
Affected version
Version: 2.18.1
Summary
- Configure LLNG as an SAML/OIDC or CAS issuer
- Initialize login from a SP
- Log in using 2FA, SAML or something else that longer than issuersTimeout to perform
- Login works, but you are redirected either to the portal (SAML/CAS) or an error message (OIDC)
Logs
[INFO] Bad (or expired) token 1706124567_32351
[ERROR] Unknown response type:
Possible fixes
The user often gets confused about ending up on the portal, we should at least give them an error message that says they took too long so that they can understand why the application isn't displayed