-
-
Notifications
You must be signed in to change notification settings - Fork 4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Logout and no function of the app tokens if 2FA is not completely executed #29371
Comments
Nextcloud log (data/nextcloud.log)Nextcloud log
|
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
This comment has been minimized.
@acsfer My guess is that this is related to the "Authentication without password (FIDO2)" feature. |
Not sure if this helps here, but can you give it a try? |
How do I test this? |
Either you change the code manually on the mentioned files, or you wait for NC21.0.6 :) |
Ok Thanks Change code I rather let ;) I have too little idea for that. Then I make an update, I have NC 21.0.7 already available |
Hi, please update to 24.0.9 or better 25.0.3 and report back if it fixes the issue. Thank you! My goal is to add a label like e.g. 25-feedback to this ticket of an up-to-date major Nextcloud version where the bug could be reproduced. However this is not going to work without your help. So thanks for all your effort! If you don't manage to reproduce the issue in time and the issue gets closed but you can reproduce the issue afterwards, feel free to create a new bug report with up-to-date information by following this link: https://github.com/nextcloud/server/issues/new?assignees=&labels=bug%2C0.+Needs+triage&template=BUG_REPORT.yml&title=%5BBug%5D%3A+ |
Steps to reproduce
If you do this three, four, five times in a row, you will be logged out of all active sessions (kicked out).
But the worse thing is, no app tokens will work then either.
All additional programs that try to access the Nextcloud via App Tokens only return the error "User or password incorrect".
After a certain time (sometimes several hours) everything works again. All programs can access via their App Tokens again.
Expected behaviour
Tell us what should happen
Actual behaviour
Tell us what happens instead
Server configuration
Operating system:
Debian 10 (Openmediavault)
Linux 5.10.0-0.bpo.8-amd64 x86_64
Web server:
Nginx
Database:
MariaDB Version: 10.3.31
PHP version:
Version: 7.3.29
Nextcloud version: (see Nextcloud admin page)
21.0.4
Updated from an older Nextcloud/ownCloud or fresh install:
Version 14 or 15 (I don't remember exactly)
Where did you install Nextcloud from:
Signing status:
Signing status
List of activated apps:
Enabled:
Disabled:
Nextcloud configuration:
Config report
Are you using external storage, if yes which one: local/smb/sftp/...
Local and SMB
Are you using encryption:
no
Are you using an external user-backend, if yes which one:
No
LDAP configuration (delete this part if not used)
LDAP config
Client configuration
Browser:
Operating system:
Logs
Web server error log
Web server error log
Nextcloud log (data/nextcloud.log)
Nextcloud log
Browser log
Browser log
The text was updated successfully, but these errors were encountered: