SAML bypass 2FA option not working
I am integrating Gitlab with Duo SAML sign in. I have everything working following the docs except when I login through my SAML portal I still get prompted for a Multifactor authentication method.
Here are the docs where it shows the option on how to bypass multifactor when signing in through SAML: https://docs.gitlab.com/ee/integration/saml.html#bypass-two-factor-authentication
Here is the merge request of the feature: https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/19651
I have noticed the docs and the merge request have different key names but I have tried both.
I have pasted this exactly into the config:
upstream_two_factor_authn_contexts:
%w(
urn:oasis:names:tc:SAML:2.0:ac:classes:CertificateProtectedTransport
urn:oasis:names:tc:SAML:2.0:ac:classes:SecondFactorOTPSMS
urn:oasis:names:tc:SAML:2.0:ac:classes:SecondFactorIGTOKEN
)
I have also tried
upstream_two_factor_auth:
[
'urn:oasis:names:tc:SAML:2.0:ac:classes:CertificateProtectedTransport',
'urn:oasis:names:tc:SAML:2.0:ac:classes:SecondFactorOTPSMS',
'urn:oasis:names:tc:SAML:2.0:ac:classes:SecondFactorIGTOKEN'
]
Am I suppose to change any of those values?
Thanks for any help you can provide. If you need more information I can definitely provide it.