Disable password login with nosso-parameter
By default, the username/password login page can be accessed by adding the parameter nosso to the appropriate login page URL:
Jira: https://<baseurl>/login.jsp?nosso
Confluence: https://<baseurl>/login.action?nosso
Bitbucket: https://<baseurl>/login?nosso
Bamboo 5: https://<baseurl>/userlogin!default.action?nosso
Bamboo 6: https://<baseurl>/userlogin!doDefault.action?nosso
This can be disabled via the app's configuration redirection tab:
This setting can be changed using a REST endpoint to allow login if the SSO fails for any reason:
Method | URL | Usage | cURL example |
|---|---|---|---|
GET | https://<baseUrl>/rest/samlsso-admin/1.0/nosso | check status | curl -u adminuser:password -X GET https://<baseUrl>/rest/samlsso-admin/1.0/nosso |
PUT | https://<baseUrl>/rest/samlsso-admin/1.0/nosso/on | enable password login | curl -u adminuser:password -X PUT https://<baseUrl>/rest/samlsso-admin/1.0/nosso/on |
PUT | https://<baseUrl>/rest/samlsso-admin/1.0/nosso/off | disable password login | curl -u adminuser:password -X PUT https://<baseUrl>/rest/samlsso-admin/1.0/nosso/off |