Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Invalid credentials error when signing in to non-LDAP accounts #15

Open
Graycot opened this issue Jan 27, 2023 · 11 comments
Open

Invalid credentials error when signing in to non-LDAP accounts #15

Graycot opened this issue Jan 27, 2023 · 11 comments

Comments

@Graycot
Copy link

Graycot commented Jan 27, 2023

Problem: After registering a non-YunoHost/LDAP Akkoma account, signing in throws a "Invalid Credentials" error.

Solution: Go to the Admin FE > Settings > Authentication > LDAP > Toggle off "Enabled".

Note: Signing in with the original LDAP connected admin account is not affected by disabling LDAP, and works as normal.
@bugsysop
Copy link
Collaborator

bugsysop commented Jan 28, 2023
edited

Workerd for me with Pleroma, but not with Akkoma.

Worked like a charm on a new install of Akkoma.
On the old one I possibly messed up the config playing with to many options.

@lapineige
Copy link
Member

Do you use a password with special characters @Graycot ?

@Graycot
Copy link
Author

Graycot commented Jan 28, 2023

Do you use a password with special characters @Graycot ?

No, I did not.

@lapineige
Copy link
Member

So if I understand correctly :

  • you create a first user that is from LDAP (how ? I didn't know that was working).
  • login works
  • then you create another account
  • and then it fails ?

Which version are you using ?

#12 fixed a syntax error in LDAP config, maybe that changed something ?

@tio-trom
Copy link

tio-trom commented Mar 22, 2023
edited

Same here with the latest 3.7.1~ynh1 version. My config looks like this:

config :pleroma, Pleroma.Web.Auth.Authenticator, Pleroma.Web.Auth.LDAPAuthenticator
config :pleroma, :ldap,
  enabled: true,
  host: "localhost",
  port: 389,
  ssl: false,
  # sslopts: [],
  tls: false,
  # tlsopts: [],
  base: "ou=users,dc=yunohost,dc=org",
  uid:  "uid"

If I try to set enabled: false it still does not work. Is there a way to entirely remove LDAP from Akkoma?

Edit: I am stupid. I should have read the docs and the main comment here. Works now. Sorry.

@lapineige
Copy link
Member

What was the issue ?

@tio-trom
Copy link

What was the issue ?

For me trying to login with non LDAP users. Would not work. Disabling LDAP entirely fixes the issue.

@Graycot
Copy link
Author

Graycot commented Mar 25, 2023
edited

What was the issue ?

For me trying to login with non LDAP users. Would not work. Disabling LDAP entirely fixes the issue.

This is the issue and solution I experienced.

@lapineige
Copy link
Member

I hope recent config change would fix it… if anyone can try a fresh install of #28… or check their /etc/akkoma/config.exs file and see if this part it's the same as in https://github.com/YunoHost-Apps/akkoma_ynh/blob/2023.04/conf/ldap.exs

@lapineige
Copy link
Member

Thanks for sharing the workaround, because I suddenly encountered this issue recently… it was quick and easy to identify and fix it thanks to you.

I wonder if we should disable LDAP by default until we integrate it properly 🤔

@lapineige
Copy link
Member

As a side note, I had to dump instance config from database, change the values, then migrate config file to db again, as I would have lost my settings (done from the admin UI) it if I migrated the config file first.
Here are the commands (adapt them according to our Readme) : https://docs-develop.pleroma.social/backend/administration/CLI_tasks/config/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@bugsysop @lapineige @tio-trom @Graycot