UX problem : how to show authentification errors on login page

olivier.d · June 8, 2021, 8:33am

Hi community,

I’m facing a challenge with UX constraints about displaying authentification errors to end user :

I’m using the login page of keycloak and would like to customize it to what my customer is currently displaying to its end users.

When authenticating with social login, let’s say Google, I’m adding additional authentication checks on worklow ‘first-broker-login’ and ‘post-login’. Those authenticators might fail the workflow of authentication which should lead to an error message displayed to the end user. i.e : your account is not valid to connect to application A, please contact your adminstrator.

The UX problem I’m facing is that this error message is printed on a “error page”. I would like to print this error message on the login page (the first page of the flow).

I have tried numerous options in my authenticator without success :

context.challenge( context.form()
.setError(e.getMessage(), brokerUsername, brokerContext.getIdpConfig().getAlias())
.createLoginUsernamePassword());
context.failure(…)
context.cancelLogin()
context.resetFlow()

without success.

Does anyone know if this use case is possible?

Thanks in advance,
Olivier

olivier.d · June 10, 2021, 8:56am

I guess this use case is not valid based on how Keycloak manages authentication.

The “login page” is part of the browser flow mapped to the login authentication flow which ends with either an error page or a success redirection.

Anyway, would it be possible to restart an authentication flow with an error shown from a previous authentication flow?

My use case is the following :
A user would like to authenticate from google connect. In my realm, he can only log from a custom domain.
If he tries to login from a default gmail account, the authentication will fail, but I would like to display the error from the login screen.
Would that mean in keycloak flow that I should restart a new authentication flow? How can I display an error message from a previous flow?

Thanks in advance for your tips,
Olivier

remiges-bhavyag · December 6, 2023, 5:38am

Hi Olivier,
Did you manage to solve this?
Thanks.

Topic		Replies	Views
Custom Error Handling Securing applications authentication	0	957	March 30, 2023
Issue with Redirecting to "Page Not Found" Instead of Expected Error Message on Keycloak Login Attempt Getting advice authentication	1	752	June 13, 2024
Iphone error in Authentication Flow authentication , oidc	1	246	September 27, 2024
Redirection to an url is not happening when there is an error in keycloak Getting advice	5	862	May 28, 2024
Returns login page continuously on login. Configuring the server authentication , clustering , identity-brokering	0	429	February 21, 2023

UX problem : how to show authentification errors on login page

Related topics