You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
If there are multiple valid factor_types supported by a given provider, the first is always selected if a factor is set in the ~/.okta-awsconfig file:
Run okta-awscli as a user with Okta Verify enabled but Okta Verify push notifications disabled as a valid factor.
okta-awscli blocks on "Waiting for push verification..." but no push is sent.
Expected behavior
Either:
okta-awscli gracefully handles the Okta response (I'm making an assumption that Okta will respond that it cannot send a push notification if that's a disabled factor for the user) and falls back to Okta Verify TOTP.
Allow a factor_type to be specified in the config file.
Environment (please complete the following information):
OS: MacOS
The text was updated successfully, but these errors were encountered:
Describe the bug
If there are multiple valid factor_types supported by a given provider, the first is always selected if a factor is set in the
~/.okta-awsconfig file:okta-awscli/oktaawscli/okta_auth_mfa_base.py
Line 62 in 42681a7
To Reproduce
factor = OKTAin.okta-awsfile.okta-awsclias a user with Okta Verify enabled but Okta Verify push notifications disabled as a valid factor.okta-awscliblocks on "Waiting for push verification..." but no push is sent.Expected behavior
Either:
okta-awscligracefully handles the Okta response (I'm making an assumption that Okta will respond that it cannot send a push notification if that's a disabled factor for the user) and falls back to Okta Verify TOTP.Environment (please complete the following information):
The text was updated successfully, but these errors were encountered: