-
Notifications
You must be signed in to change notification settings - Fork 35
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Login with invalid username or email displays 'Internal Server Error' message #1808
Comments
@brylie Can you check if anything has changed in validate (?) login code after release 0.33? |
There is a It is possible that recent changes to that file, or some other user login related function/configuration has resolved this issue in nightly. |
@jykae Please check this one after apinf.io is redeployed and settings have been changed |
@bajiat Still results "Internal server error" in apinf.io |
I think this is by design. If we submit an invalid email address, the security method may be designed to throw a 500 error to the client. See
|
@brylie yep, error is ok, but we should find a way to catch error and show nicer error message for user :) And interesting part is why nightly gives "Login forbidden" that is a bit better message. |
Also, the login form allows people to login with a username, so we can't always expect an email address. |
@brylie Right, but it behaves same way if username does not exist on apinf.io |
Where does the error originate? What method is checking that the user exists? |
And what is the difference between our local envoronment, where we see 'Login forbidden' and the deployment, where we see 'Internal server error'? |
@brylie Don't know, trying to look at it.. in progress |
I am testing locally with |
This does not look too good, https://github.com/apinf/platform/blob/develop/users/server/accounts_hooks.js#L38 |
Hm. That seems to be left over from our boilerplate. Is it still necessary, or can we remove it? |
Also, how can we access the server error log? It would probably be useful to get an error message. |
Kool beans. |
@brylie onLogin hook seems to be unnecessary, tested locally by commenting out, tried to register/login both with Github. It should wipe away undefined user._id error found in server logs. |
Good work! Lets clean up that hook. 💣 💥 😎 |
Reason for this according above apinf.io logs: Current develop, we are checking that: (would explain difference between nightly vs. apinf.io) |
Also apinf.io looks ok after the new release was deployed. Showing Login forbidden instead of Internal server error |
Steps:
Expected Result
Notify user with error message 'Invalid email address'
Actual Result
Displays 'Internal Server' error
Findings
Browser
(Mozilla Firefox for Ubuntu Canonical – 1.0 )
Operating System
Ubuntu 16.0 LTS
Screenshot
The text was updated successfully, but these errors were encountered: