Access denied when I enable single org setting

Ask for Help
1

Hello,

We’ve setup grist:

  1. as a self managed instance (docker)
  2. with SAML enabled (keycloak)
  3. with redis sessionstore (initially it was file based - problem was the same)

When we try to enable environment variable GRIST_SINGLE_ORG=*** and then log in using the IDP, the page tells that access is denied with an button to “add account” (clicking on it does not do anything).

On the other hand, in the logs it logs an error, for which I’m not sure what is the cause: error: ScopedSession[***]: Error updating sessionStore: Error: failed to load session

I am not sure what we are doing wrong, but we would like to have a self managed grist deployment with SAML and single organization enabled, which from this perspective does not work and we’re not sure why?

2

I have the same error after signing in with SAML SSO. After clicking “Go to Main Page” and signing in a second time, I was able to access Grist without the error. It would be nice if a dev resolved stale sessions and allowed the user to login the first time. Please help.

3

Actually, I’m getting the same exact error you’re getting now, @Giorgi_Jambazishvili .

4

Did you ever find a solution @Giorgi_Jambazishvili ?