Is there a way to turn on additional logging for SAML authentication?


I’m configuring SALM authentication (we’re using Okta as our IdP), and I keep getting the error:

Bad Request

Required argument missing: 400 Bad Request: The browser (or proxy) sent a request that this server could not understand.

The error is on Indico’s /login/ page after the IdP sends the SAML response. I don’t see any extra details in the log file, just what’s on the login page. Is there someway to turn on more verbose logging so that I can see where in the code the error is coming from?


if there’s nothing in indico.log it sounds like the error happens outside the usual flask processing logic. You can add logto = /tmp/usgi.log to your /etc/uwsgi-indico.ini to get logging output from uWSGI as well.

PS: Doesn’t Okta also support OIDC? If yes, that would be the much better choice since it’s way easier to use than SAML.

Thanks! I’ll try that.

Okta does support OIDC as well. I’ll try that as well.