On May 5th, 2025, at 11:58 AM UTC, users encountered login issues while trying to access the SAP LeanIX. The issue only affected customers who authenticated using their LeanIX credentials. Customers who logged in via single sign-on (SSO) were not affected.
By 12:30 PM UTC on the same day, the problematic code was reverted, successfully restoring functionality.
The incident was traced to a bug within a newly released logging extension, which was intended to enhance monitoring capabilities in our authentication stack. This bug failed to validate certain properties during the login attempt, resulting in exceptions in the subsequent code.
The automated test suite will be extended to cover logging extension runtime issues on the application framework level.