Authentication flow request triggering security challenge

What is the name of the domain?

Please DM me for the domain, as it is not owned by us

What is the issue you’re encountering

Cloudflare Ray ID: 8b660ab96dc3a028. Our application implements a specification called LTI used for integrating EdTech platforms. Part of this is an authentication flow using OpenID Connect. Essentially, the user logs into a 3rd party application which has a back-and-forth with our server to authenticate the user. In this case the 3rd party server is protected by Cloudflare, and when our application makes a request to their server for the OpenID configuration, our request triggers a WAF challenge. Is it possible to find out what characteristics of our request triggered the challenge, and if there is anything we can do on our end to prevent our users from running into this kind of issue? Or is the only solution to ask our users to change their Cloudflare settings? This can be difficult as our direct users (e.g. teachers) will likely not have access to such settings. Please let me know if there is any other information I can provide.

You need a payload logging to know which request characteristic causing the block. However, this feature is only available for customers on an Enterprise plan.

The easiest way is to override the rules that causing false positive.

1 Like

This topic was automatically closed after 15 days. New replies are no longer allowed.