Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[api] Refreshing access token works but causes error to be logged #2866

Closed
mhilbush opened this issue Mar 3, 2020 · 1 comment
Closed

[api] Refreshing access token works but causes error to be logged #2866

mhilbush opened this issue Mar 3, 2020 · 1 comment

Comments

@mhilbush
Copy link

mhilbush commented Mar 3, 2020

  • Version of ZoneMinder: 1.34.5
  • How you installed ZoneMinder: PPA
  • Full name and version of OS: Ubuntu 18.04 LTS
  • Browser name and version: N/A
  • API Version: 2.0

The documentation recommends refreshing an access token prior to it expiring. However, while the refresh is successful, refreshing an access token before it expires generates an error in the log.

To Reproduce

  1. POST to the login API with content of user id and password. The API responds with a JSON object containing both the refresh and access tokens.
  2. Just prior to the access token expiring (in my case I used 5 minutes before expiration), GET the login API with the refresh token as the query parameter (i.e. /zm/api/host/login.json?token=. The API responds with a JSON object containing the new access token.
  3. The access token is successfully refreshed, but an error is logged.
03/03/20 07:40:34.255301 web_php[22152].ERR [192.168.xxx.yyy] [Token type mismatch. Expected access but got refresh] at /usr/share/zoneminder/www/includes/auth.php line 129

Here's the decoded refresh token used in step 2 above.

{
  "iss": "ZoneMinder",
  "iat": 1583174342,
  "exp": 1583260742,
  "user": "xxxxx",
  "type": "refresh"
}

I'm not sure why it's expecting the access token. The code looks like it's setting the allowed token type to refresh in the call to validateToken.

Expected behavior
Refreshing an access token should not generate an error in the log
pliablepixels added a commit to pliablepixels/ZoneMinder that referenced this issue Mar 4, 2020
@pliablepixels
ZoneMinder#2866 - fixes incorrect token type comparison
1381cb1
connortechnology added a commit that referenced this issue Mar 4, 2020
@connortechnology
Merge pull request #2870 from pliablepixels/dev
4dae0c4 
#2866 - fixes incorrect token type comparison
connortechnology added a commit that referenced this issue Mar 4, 2020
@connortechnology
Merge pull request #2870 from pliablepixels/dev
53f262a 
#2866 - fixes incorrect token type comparison
@mhilbush
Copy link
Author

mhilbush commented Mar 9, 2020

Confirming this is fixed in 1.34.6. Thank you.

@mhilbush mhilbush closed this as completed Mar 9, 2020
@pedromoraesh pedromoraesh mentioned this issue Aug 10, 2020
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@mhilbush