New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SuperGluu screen throws error #874

Closed
natt-tester opened this Issue Aug 24, 2018 · 10 comments

Comments

Projects
None yet
3 participants
@natt-tester

natt-tester commented Aug 24, 2018

The very first step of SuperGluu QR verification throws an error when the user doesn't scan the code within the given time.

Tested in Ubuntu 16.04 with gluu-server-3.1.4_1.Beta1:

error_supergluu

oxauth.log

@natt-tester natt-tester added this to the 3.1.4 milestone Aug 24, 2018

@yurem

This comment has been minimized.

Contributor

yurem commented Aug 24, 2018

Can you attach oxauth.log and oxauth_script.log?

@yurem yurem self-assigned this Aug 24, 2018

@natt-tester

This comment has been minimized.

natt-tester commented Aug 27, 2018

@yurem, I can't find the package in the repo anymore, but I have been testing Ubuntu 16.04 with gluu-server-3.1.4_1.Beta2 and at least this issue seems to be fixed. The QR codes reload when the time is up.

Hovewer, I did encounter one proxy error. Please refer to the attached logs:
oxauth_script.log.zip
oxauth.log.zip

ubuntu16_gserver3 1 4_proxy_error

@yurem

This comment has been minimized.

Contributor

yurem commented Sep 1, 2018

@natt-tester is it your local server or public available one? For proper Super Gluu work you should use real DNS server name instead of adding host name to hosts file.

If needed I can explain how to use fake DNS server like WindowsDNS to test Super Gluu with local VM.

@willow9886

This comment has been minimized.

Contributor

willow9886 commented Sep 1, 2018

@yurem it might make sense to add those instructions to our documentation to reduce confusion

@yurem

This comment has been minimized.

Contributor

yurem commented Sep 1, 2018

@natt-tester please open Keys section in mobile app and remove old key for this server. Also if there is sub-entry ou=fido under user entry in LDAP please remove it. Old keys migh from previous install might led to issue.

@yurem

This comment has been minimized.

Contributor

yurem commented Sep 1, 2018

Here is method how to test Super Gluu locally without public server.

This method allows to test super Gluu locally, but it's based on MITM attack type. It's for developement purpouse only!!!

  1. In VM settings change Network Adapter connection type from NAT to Bridget // CE and Mobile phone connected to WiFi should be in same local network

  2. Log into VM and run in terminal ifconfig to get IP address of CE.

  3. Install CE as usual

  4. Enable Super Gluu

  5. Update hosts file on machine where you run browser to log in. Example:
    192.168.1.232 c67.gluu.info

  6. Run ipconfig/ifconfig on machine where you are plannign to run DNS server.

  7. Create dns.config file in folder where there is dedserver.jar. Exmaple file content:
    u144.gluu.info.=192.168.1.232

  8. Run DNS server using command like this: java -jar dedserver.jar

  9. On mobile phone open WiFi connection details and specify DNS server IP which you get in step 6

  10. Now you can test super Gluu.

  11. After end of Super Gluu testing don't forget to change WiFi connection type on mobile phone to use automatic settings.

@yurem

This comment has been minimized.

Contributor

yurem commented Sep 1, 2018

Locally I followed instructions about it works well.
@willow9886 We probably need to add instructions above to developers section of our docs.

I attached to this message missed jar from TODO.

dns.zip

@yurem yurem closed this Sep 1, 2018

@natt-tester

This comment has been minimized.

natt-tester commented Sep 13, 2018

@yurem, I followed the instructions, but couldn't get it to work properly. I used a default linux server instead, testing SG on an Android and iOS devices. It crashed in the iphone and failed in the Android, and the flow in oxtrust was the following. Could somebody else please check it?

https://ufile.io/6n53w

@natt-tester natt-tester reopened this Sep 13, 2018

@natt-tester

This comment has been minimized.

natt-tester commented Sep 18, 2018

Tested yesterday with the QA team, works fine.

@willow9886

This comment has been minimized.

Contributor

willow9886 commented Oct 4, 2018

Added instructions to Super Gluu developer docs:

https://gluu.org/docs/supergluu/developer-guide/#testing-locally

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment