-
-
Notifications
You must be signed in to change notification settings - Fork 551
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[BUG] Leantime logs out with every page change and injects %2F into the URLs repeatedly. #2504
Comments
Are you using an OIDC provider? I went to the URL and the login screen seems to be through Authelia. |
No, there is an authelia front-end 2FA for the entire site. Anything after the user is authenticated can log into service-per-service through their own provider. My compose looks like this:
Everything has worked for close to 2 years until the most recent update to 3.1.4 from 3.0.7 I believe it was. |
I have narrowed it down, because this is quite a bad issue. The problem begins on 3.1.2. 3.1.1 works perfectly. I don't know what commit broke things, but maybe it has to do with the middleware improvements that caused a bug somewhere? |
Same issue here. Running 3.1.1 ok. Could be that the session ID is regenerated before processing the SSO postback redirect? so the app lost the context and don't know what to do with the IdP response? |
If you have problems with the installation please use our community forum
What set up are you using
Describe the bug
2FA is not enabled!
After initial login which takes 5-10 logins and a refresh because it keeps appending a %2F redirect after every login attempt, (
https://my.domain.here/auth/login?redirect=%2F%2F%2F%2F%2F
)clicking on any button that would trigger a refresh results in a redirect to the base URL such ashttps://my.domain.here/auth/login?redirect=%2Fprojects%2FchangeCurrentProject%2F10
This means per session, I have to log in anywhere from 40-100 times. There are no errors in the logs
To Reproduce
Steps to reproduce the behavior:
Expected behavior
I expect to log in 1 time per session and be able to use the software
Leantime Version
Which Leantime version are you using
Server
Docker, reverse proxied through Traefik.
PHP / MySQL Version
10.11.6-MariaDB
PHP 8.1.28
The text was updated successfully, but these errors were encountered: