<div dir="ltr">Thanks Bruno. <div><br></div><div>I've added an RH-SSO issue and scheduled it to be included in RH-SSO 7.0.1.</div></div><div class="gmail_extra"><br><div class="gmail_quote">On 5 July 2016 at 16:59, Bruno Oliveira <span dir="ltr"><<a href="mailto:bruno@abstractj.org" target="_blank">bruno@abstractj.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">I just completely tried in a fresh new browser profile and managed to<br>
reproduce your issue. It happens with 1.9.x and Facebook accounts.<br>
<br>
I've create da Jira for this: <a href="https://issues.jboss.org/browse/KEYCLOAK-3267" rel="noreferrer" target="_blank">https://issues.jboss.org/browse/KEYCLOAK-3267</a><br>
<div class="HOEnZb"><div class="h5"><br>
<br>
On 2016-07-05, Bruno Oliveira wrote:<br>
> I've just downloaded and tried with 1.9.8 too, it works. Is this happening with<br>
> all users? Have you considered to setup an isolated environment from<br>
> scratch?<br>
><br>
> On 2016-07-05, Valerij Timofeev wrote:<br>
> > Hi Bruno,<br>
> ><br>
> > thank you for the check.<br>
> > We are going to migrate our production setup from Keycloak 1.9.4 to Red Hat<br>
> > SSO 7.0, which is based on Keycloak 1.9.8.<br>
> > Direct migration to 2.0.0.Final would be for us too risky, but still an<br>
> > option somewhen later.<br>
> ><br>
> > @All,<br>
> > any ideas for Keycloak 1.9.x? May be there is some setting we miss allowing<br>
> > us to use both "peacefully".<br>
> ><br>
> > Kind regards<br>
> > Valerij<br>
> ><br>
> > 2016-07-05 15:59 GMT+02:00 Bruno Oliveira <<a href="mailto:bruno@abstractj.org">bruno@abstractj.org</a>>:<br>
> ><br>
> > > Hi Valerij,<br>
> > ><br>
> > > I've tested against 2.0.0.Final right now and I couldn't reproduce your<br>
> > > issue.<br>
> > ><br>
> > > I have brute force enabled by default here and Facebook configured<br>
> > > exactly like described at the docs.<br>
> > ><br>
> > > Not sure how to reproduce your issue :/ Maybe, give 2.0.0.Final a try?<br>
> > ><br>
> > > On 2016-07-05, Valerij Timofeev wrote:<br>
> > > > Hi all,<br>
> > > ><br>
> > > > it looks like the Brute Force Detection breaks Social login.<br>
> > > ><br>
> > > > I've:<br>
> > > > 1) downloaded keycloak-demo-1.9.8.Final<br>
> > > > 2) setup Facebook Identity provider<br>
> > > > 3) successfully tested Facebook login<br>
> > > > 4) activated Brute Force Detection with default values<br>
> > > > 5) tested Facebook login: it fails with the error message: "Account is<br>
> > > > disabled, contact admin."<br>
> > > ><br>
> > > > I wonder whether somebody has ever tested this combination.<br>
> > > ><br>
> > > ><br>
> > > > Kind regards<br>
> > > > Valerij Timofeev<br>
> > ><br>
> > > > _______________________________________________<br>
> > > > keycloak-user mailing list<br>
> > > > <a href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a><br>
> > > > <a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br>
> > ><br>
> > ><br>
> > > --<br>
> > ><br>
> > > abstractj<br>
> > > PGP: 0x84DC9914<br>
> > ><br>
><br>
> --<br>
><br>
> abstractj<br>
> PGP: 0x84DC9914<br>
<br>
--<br>
<br>
abstractj<br>
PGP: 0x84DC9914<br>
_______________________________________________<br>
keycloak-user mailing list<br>
<a href="mailto:keycloak-user@lists.jboss.org">keycloak-user@lists.jboss.org</a><br>
<a href="https://lists.jboss.org/mailman/listinfo/keycloak-user" rel="noreferrer" target="_blank">https://lists.jboss.org/mailman/listinfo/keycloak-user</a><br>
</div></div></blockquote></div><br></div>