Salesforce Known Issues
Trailblazer Community

Known Issues · Authentication

'Login As user ' in lightning with lock session to domain invalidate session quickly

Performance , Authentication , Summer 17 , Lightning

SUMMARY: In Summer '17, if both a System Admin and their user are on Lightning, then the System Admin can encounter a forceful logout when attempting to use 'Login As' to the other Lightning user.

In Review ·Reported By 202 ·Updated Today

Newly created "Login As" user unable to login into Analytics Studio

Authentication

In Winter'21 Orgs, Newly created "Login As" user unable to login into Analytics Studio.

Fixed - Winter '21 Patch 7.0 ·Reported By 44 ·Updated 2 days ago

Session Timeouts Do Not Trigger LogoutEventStream

Authentication

LogoutEventStream logs an event in 2 scenarios if "Force logout on session timeout" session setting is enabled: 1. The user logs out from the UI manually. 2. The user is logged out automatically when their session times out. Triggers created on LogoutEventStream however will only fire when a...

In Review ·Reported By 27 ·Updated 2 days ago

Sandbox intermittent error while login : We can't complete the action because enabled transaction security policies took too long to complete.

Authentication , Flow

While trying to log in on Sandbox, intermittently encounter the error: Error authenticating with the refresh token due to: security policies took too long to evaluate or We can't complete the action because enabled transaction security policies took too long to complete. For help, contact your...

In Review ·Reported By 13 ·Updated Today

redirect_uri isn't associated with community URL when Auth. Provider SSO is initiated from "Community Builder Page"

Authentication , Communities

When MyDomain is enabled and Auth. Provider SSO is initiated from "Community Builder Page", redirect_uri is associated with standard login URL instead of Community URL. This doesn't occur when it's initiated from "Default Page".

In Review ·Reported By 37 ·Updated 3 days ago

New!When CORS request is made to a Salesforce REST API endpoint with an invalid/expired OAuth access token, the CORS headers are not added to the response

API , Authentication , Winter 23

When a request is sent from an origin registered in the salesforce org's CORS settings to a Salesforce REST API data endpoint with an invalid/expired OAuth access token, the CORS headers are not added to the response. As a result, the browser regards the response not as an authentication failure but...

Fixed - Winter '23 ·Reported By 0 ·Updated Today

User Session with type 'InternalServiceCall' is created when Report Subscription is run and stays valid for two hours

Authentication

User Session with type "InternalServiceCall" is created (validity of 2hours) whenever a report subscription is ran. This can be viewed in Setup | Session Management. Customers who are using transaction policies for user concurrent sessions may find this behavior a problem on their business process...

In Review ·Reported By 4 ·Updated 2 days ago

Logout URL in community is not working if there is only one authentication provider login option

Authentication

Logout URL in community is not working if there is only one authentication provider login option, the redirection going to www.salesforce.com irrespective of the provided Logout URL.

In Review ·Reported By 17 ·Updated 3 days ago

While already logged in with Username & Password, logging in from Login Page via clicking Username w green dot directs to Home Page rather than Setup

Authentication

While already logged in with Username and password, logging in from Login Page via clicking Username with green dot directs to Home Page rather than Setup

In Review ·Reported By 16 ·Updated 3 days ago

Unable to delete SAML Config

Authentication

Delete/Disable SAML config result in error: "Your organization or community is currently using this Single Sign-On Setting as an authentication method, so you can’t delete it."

In Review ·Reported By 211 ·Updated 8 days ago

1 to 10 of 218 | Next

Any unreleased services, features, statuses, or dates referenced in this or other public statements are not currently available and may not be delivered on time or at all. Customers who purchase our services should make their purchase decisions based upon features that are currently available.