IT-Tools and OIDC - Looping issue
-
@Teiluj have you tried impersonating that user? If you can reproduce yourself you might be able to get further insight.
-
@Teiluj have you tried impersonating that user? If you can reproduce yourself you might be able to get further insight.
Hi @jdaviescoates - Many thanks for your idea.
Impersonating the user present the same loop problem unfortunately.
-
Hi @jdaviescoates - Many thanks for your idea.
Impersonating the user present the same loop problem unfortunately.
-
Hi @jdaviescoates - Many thanks for your idea.
Impersonating the user present the same loop problem unfortunately.
@Teiluj there might be some clues in the browser console when doing it as the user?
-
A short update: this seems to point at a server issue.
Using the same computer and the same browser, I installed the app on a different server, and was able to log into the app successfully, using the same user credentials (the user authentication comes from LDAP sync from a 3rd cloudron server)
I can also confirm that on that one server, where the user is having the issue, clearing the browser's cache or using a different browser/computer, does not solve the problem.
@james - Happy to share more details as far as possible, but considering the above, I doubt that this is easily reproducible.
-
@Teiluj there might be some clues in the browser console when doing it as the user?
@jdaviescoates Thanks for the suggestion - I cannot see anything of significance there either.
-
Hi @james - Thanks for your willing help.
For security/confidentiality reasons, these are elements of information that are difficult to share on a public forum. I could eventually share this in a private context, but I can confirm that there is absolutely nothing special about both username and the name of the user. I hope that it makes sense.Just as a short recap about this:
- the server where the application is installed has its user directory LDAP synced from another Cloudron. The user facing the issue is a synced user
- The cloudron sso-enabled application used to work with this particular user, until it stopped and created this looping issue
- it only happens for this user on this server for this app:
- Other cloudron sso-enabled apps on this same server have no issue with this user.
- Other users using the IT-Tools app on this same server have no looping issues
- On the same server, with a newly/secondary installed IT-Tools app instance, the same user still faces the looping issue.
- both the server log as well as the app log do not show anything of note regarding this. In fact, the event log of the app shows the user has "logged into" the app.
- On another server, with the user directory also synced, with the IT-Tools app installed there, the same user does not experience the looping issue.
- the looping error persists even when using different machines / different browsers / clearing the browser's cache, etc...
I hope that this helps somehow.
-
Hi @james - Thanks for your willing help.
For security/confidentiality reasons, these are elements of information that are difficult to share on a public forum. I could eventually share this in a private context, but I can confirm that there is absolutely nothing special about both username and the name of the user. I hope that it makes sense.Just as a short recap about this:
- the server where the application is installed has its user directory LDAP synced from another Cloudron. The user facing the issue is a synced user
- The cloudron sso-enabled application used to work with this particular user, until it stopped and created this looping issue
- it only happens for this user on this server for this app:
- Other cloudron sso-enabled apps on this same server have no issue with this user.
- Other users using the IT-Tools app on this same server have no looping issues
- On the same server, with a newly/secondary installed IT-Tools app instance, the same user still faces the looping issue.
- both the server log as well as the app log do not show anything of note regarding this. In fact, the event log of the app shows the user has "logged into" the app.
- On another server, with the user directory also synced, with the IT-Tools app installed there, the same user does not experience the looping issue.
- the looping error persists even when using different machines / different browsers / clearing the browser's cache, etc...
I hope that this helps somehow.
@Teiluj said in IT-Tools and OIDC - Looping issue:
On another server, with the user directory also synced, with the IT-Tools app installed there, the same user does not experience the looping issue.
TBH I'd probably just be inclined to just use that instance
-
@Teiluj said in IT-Tools and OIDC - Looping issue:
On another server, with the user directory also synced, with the IT-Tools app installed there, the same user does not experience the looping issue.
TBH I'd probably just be inclined to just use that instance
@jdaviescoates Thanks - Not the I have not though about this, but, at last, this could only be a temporary solution following our infrastructure setup.
It also does not solve the underlying OIDC issue, which I very much find intriguing.
