Is`OktaCredentialsProvider.handle_saml_assertion` compatible with SageMaker instances?

[admivsn]

I'm encountering an issue when using redshift_connector with Okta-based authentication inside my organisation's SageMaker environment.

In OktaCredentialsProvider.handle_saml_assertion I receive an error okta_credentials_provider.py#L158 despite receiving a 200 OK and a response of length > 2k.

Upon investigating the logs it seems to be down to a browser or Javascript issue? I've tried on both SageMaker Studio Code Editor and SageMaker Notebook instances and get the same issue.

It's also strange that OktaCredentialsProvider.okta_authentication works perfectly and I'm able to retrieve the okta_session_token, but the later step fails.

The same identical code works perfectly on my local machine.

I've attached the relevant part of the response below:

...
    </style><noscript>
      <div id="noscript-msg" class="noscript-msg">
        <div class="noscript-content">
          <h2>Javascript is required</h2>
          <h1>Javascript is disabled on your browser.&nbspPlease enable Javascript and refresh this page.</h1>
          <a href="." class="tb--button">Refresh</a>
        </div>
      </div>
    </noscript>
    <div id="signin-container"></div>
    <div id="okta-sign-in" class="auth-container main-container hide">
      <div id="unsupported-onedrive" class="unsupported-message hide">
        <h2 class="o-form-head">Your OneDrive version is not supported</h2>
        <p>Upgrade now by installing the OneDrive for Business Next Generation Sync Client to login to Okta</p>
        <a class="button button-primary tb--button" target="_blank"
          href="https://support.okta.com/help/articles/Knowledge_Article/Upgrading-to-OneDrive-for-Business-Next-Generation-Sync-Client">
          Learn how to upgrade</a>
      </div>
      <div id="unsupported-cookie" class="unsupported-message hide">
        <h2 class="o-form-head">Cookies are required</h2>
        <p>Cookies are disabled on your browser. Please enable Cookies and refresh this page.</p>
        <a class="button button-primary tb--button" target="_blank" href=".">
          Refresh</a>
      </div>
    </div>
  </div>
...
  <div id="inactive-tab-main-div" class="hide">
    <div class="inactive-tab-container">
      <div class="inactive-tab-header">
        <img src="https://ok9static.oktacdn.com/fs/bco/1/fs06gw7t96dekMGCH417" alt="Flutter&#x20;UK&amp;I"
          class="report-org-logo" />
        <div class="divider"></div>
      </div>
      <div class="inactive-tab-content">
        <h2 class="inactive-tab-content-title">The page has timed out</h2>
        <p class="inactive-tab-details">If this page does not reload automatically, please refresh your browser.</p>
      </div>
    </div>
  </div>