How to resolve issues with Confluence SSO Login causing Page Not Found

Cesar Ramirez 16 Reputation points
2021-02-09T18:40:35.167+00:00

Hello, we are using this plugin: https://learn.microsoft.com/en-us/azure/active-directory/saas-apps/confluencemicrosoft-tutorial

Many users are reporting that when they first login for the day (and say they had the browser open over night), their Confluence session has timed out and requires a relogin.

The issue happens when they click on a link (say in Outlook) to a Confluence page before refreshing the session, they are presented with the standard login screen, but hitting Login With Azure AD, results in the error: InResponseTo of the response does not match the ID of the authentication request. Please try again.

65955-image.png

They then try again, but when they are logged in, they are always greeted with Page Not Found. If they click the link again where they originally came from (Outlook), it will direct them to the proper page. While they still can login and it's a few extra clicks, many users are frustrated that this is a daily occurrence.

My hunch is that due to the first error, it for some reason fails the redirect to the page that the user originally wanted to navigate to. If there's anything else I can provide/do to resolve this, that would be great. Thanks!

Edit: We're on Confluence Version 7.6.0 and on the latest version of the plugin that is available for download.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,143 questions
0 comments No comments
{count} vote

2 answers

Sort by: Most helpful
  1. Marilee Turscak-MSFT 35,621 Reputation points Microsoft Employee
    2021-02-12T22:25:26.857+00:00

    Hi @Cesar Ramirez ,

    Have you tried the solution in this thread which says to make sure the internal and external URLs are the same?

    I have also noticed that others have reported this recently so if the above solution does not work, I will check with the product team to see if anything may have changed.

    https://feedback.azure.com/forums/169401-azure-active-directory/suggestions/41940721-inresponseto-of-the-response-does-not-match-the-id


  2. Landwehr, Karsten 1 Reputation point
    2022-03-25T10:24:58.5+00:00

    Hello,

    we have the exact same issue.

    For our user the "InResponse" error is not such a big issue but the 404 error after they logged in again is.

    While debugging this I saw that, when the users click on the "Login with Azure AD" button again the payload information regarding the "os_destination" gets changed.

    Here you can see the parameter how it's set when the user sees the "InResponse" error:
    186867-image.png

    And here you can see the parameter after the user has clicked again on the login button:
    186921-image.png

    Can you please help at which location this parameter might get changes? On AzureAD site or plugin side?

    Best regards,
    Karsten

    0 comments No comments