Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum
Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. Support
  3. 403 in proxyAuth apps after server migration

403 in proxyAuth apps after server migration

Scheduled Pinned Locked Moved Solved Support
proxyauth
3 Posts 3 Posters 579 Views 3 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • mehdiM Offline
    mehdiM Offline
    mehdi
    App Dev
    wrote on last edited by girish
    #1

    I recently migrated my server to a new one (classic backup + restore process).

    After the restore, I noticed an issue with some apps : I kept getting a 403 error.

    00a3f78a-8ff2-4eb6-a99c-25b8b2da5276-image.png

    After a bit of investigation, it turned out that it was only for some specific apps : those that use the proxyAuth plugin. What was happening was that the browser still had a valid cookie for the app, so it sent it. The proxyAuth plugin, seeing a cookie, checked it, and it was incorrect (I suppose current sessions are not part of the backup so are not migrated, which makes sense).

    The problem is, instead of simply redirecting to the login page, the app keeps throwing the 403 error. For technical users, it's not really a big problem : one can just clear the site's cookies and it's all good to go. However, for less technical users, it can be a pain.

    1 Reply Last reply
    1
    • girishG Offline
      girishG Offline
      girish
      Staff
      wrote on last edited by
      #3

      I was able to reproduce both issues, thanks for reporting!

      • The proxy auth cookie secret is not persisted. It's stored in platform runtime data. I have migrated this into the database.
      • Redirection logic was incorrect when the token is invalid. This is also fixed.
      1 Reply Last reply
      2
      • robiR Offline
        robiR Offline
        robi
        wrote on last edited by
        #2

        this condition can be checked for and some action performed within the nginx config.

        Conscious tech

        1 Reply Last reply
        0
        • girishG Offline
          girishG Offline
          girish
          Staff
          wrote on last edited by
          #3

          I was able to reproduce both issues, thanks for reporting!

          • The proxy auth cookie secret is not persisted. It's stored in platform runtime data. I have migrated this into the database.
          • Redirection logic was incorrect when the token is invalid. This is also fixed.
          1 Reply Last reply
          2
          Reply
          • Reply as topic
          Log in to reply
          • Oldest to Newest
          • Newest to Oldest
          • Most Votes

          • Login
          • Don't have an account? Register
          • Login or register to search.
          • First post
            Last post
          0
          • Categories
          • Recent
          • Tags
          • Popular
          • Bookmarks
          • Search