I have an automated end-to-end test which performs the following
- register user on Idp (Keycloak in this case)
- navigate to http://your.edx.site/dashboard?tpa_hint=provider_id
I executed the test multiple times. I did get success cases, just that it failed intermittently.
Skip registration form and Skip email verification checkboxes on Provider Configuration (SAML IdP) of Django Administration are checked. And, for those users who failed to be redirected to dashboard directly when I check on Django Administration/Authentication and Authorization/Users the Permissions/Active checkbox is checked.
When I sign in using to IdP and then navigate to /dashboard?tpa_hint=provider_id, I got the follwoing
If I populate the social_auth_usersocialauth record manually for those users, I will be redirected to dashboard when go to the link.
Another observation is for those who failed, the firstname and lastname field are not populated. But for those successfully redirected to dashboard the firstname and lastname are populated. I have configured mapping on Keycloak.
I am using Ironwood release. Installed based on Native Open edX Ubuntu 16.04 64 bit Installation