Posted: 21 May 2020 5:27 EDT Last activity: 13 Jul 2020 8:49 EDT
How to customize account disabled error message when logging in with SSO?
When using a SAML2 authentication service, if a user attempts to access the system but their operator id is marked as disabled, they get an error message "Your account has been disabled, contact your administrator"
I need to be able to customize this message.
I cannot find an appropriate rule in the system that contains this message for our scenario so am assuming it is set in the API engine itself. However, I'm assuming it can be intercepted and amended!
I've set additional logging on the following but nothing shows up, so I'm probably looking at the wrong activities etc
I'll take a look at that. For whatever reason, that rule never came up in my searching but I'll certainly give it a go
Edit to say...
We're in the middle of an upgrade from 8.1.3 to 8.4.1. The .js file linked to doesn't have the account disabled message in the earlier version (where I was searching) but obviously does have it in the new version. We'll be upgrading the environment that has SSO logins in about a week so I'll check it then and update this thread with my findings
Posted: 1 year ago
Posted: 21 May 2020 22:11 EDT
Mudit Manchanda (mancm1)
Associate Technical Solutions Engineer
The message itself cannot be changed but the html stream that is displayed can and hence you can change the message there.
The way is to save the pySSOErrorRedirectRequest html stream to your unauthenticated requestor ruleset and then you can modify it to catch this particular message and change it without changing the other massages:
<pega:when java='<%= tools.getPrimaryPage().getProperty(".pyErrMsg").getMessages().equals("Your account has been disabled, contact your system administrator") %>' >
<body>Custom text: sample</body>