Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: TokenPasswordExpiredException on notification dismiss #43547

Closed
6 of 8 tasks
gnilebein opened this issue Feb 13, 2024 · 0 comments · Fixed by nextcloud/notifications#1828
Closed
6 of 8 tasks

[Bug]: TokenPasswordExpiredException on notification dismiss #43547

gnilebein opened this issue Feb 13, 2024 · 0 comments · Fixed by nextcloud/notifications#1828
Labels
0. Needs triage Pending check for reproducibility or if it fits our roadmap 28-feedback bug

Comments

@gnilebein
Copy link

gnilebein commented Feb 13, 2024
edited

⚠️ This issue respects the following points: ⚠️

Bug description

I have several unusual behaviors that may be related.

  1. every time I run the cronjob, I receive a new notification that a deck card has expired. (this is a secondary problem)

  2. if I want to confirm notifications using "Dismiss all notifications", I receive the error message "Failed to dismiss all notifications" in the frontend. The exception below appears in the Nextcloud log.

Screenshots (Sorry that these are in german)
2024-02-13 08_39_20
2024-02-13 08_37_35

I have tried a logout / login. I also emptied the Redis cache. Even an Apache & PHP restart did not solve the problem.

Steps to reproduce

I think it is hard to reproduce

  1. Dismiss Notifications

Expected behavior

The notifications should be dismissed after the action without any error.

Installation method

Community Web installer on a VPS or web space

Nextcloud Server version

28

Operating system

Debian/Ubuntu

PHP engine version

PHP 8.2

Web server

Apache (supported)

Database engine version

MariaDB

Is this bug present after an update or on a fresh install?

None

Are you using the Nextcloud Server Encryption module?

None

What user-backends are you using?

  • Default user-backend (database)
  • LDAP/ Active Directory
  • SSO - SAML
  • Other

Configuration report

{
    "system": {
        "passwordsalt": "***REMOVED SENSITIVE VALUE***",
        "secret": "***REMOVED SENSITIVE VALUE***",
        "default_phone_region": "DE",
        "default_language": "de",
        "default_locale": "de",
        "trusted_domains": [
            "xxx.xxx.xx",
            "localhost"
        ],
        "datadirectory": "***REMOVED SENSITIVE VALUE***",
        "dbtype": "mysql",
        "version": "28.0.2.5",
        "overwrite.cli.url": "https:\/\/xxx.xxx.xx",
        "dbname": "***REMOVED SENSITIVE VALUE***",
        "dbhost": "***REMOVED SENSITIVE VALUE***",
        "dbport": "3306",
        "dbtableprefix": "oc_",
        "mysql.utf8mb4": true,
        "skeletondirectory": "",
        "dbuser": "***REMOVED SENSITIVE VALUE***",
        "dbpassword": "***REMOVED SENSITIVE VALUE***",
        "installed": true,
        "instanceid": "***REMOVED SENSITIVE VALUE***",
        "htaccess.RewriteBase": "\/",
        "htaccess.IgnoreFrontController": true,
        "theme": "",
        "loglevel": 2,
        "preview_max_x": 1024,
        "preview_max_y": 1024,
        "debug": false,
        "simpleSignUpLink.shown": false,
        "user_backends": [
            {
                "class": "\\OCA\\UserExternal\\BasicAuth",
                "arguments": [
                    "https:\/\/xxx.xxx.xx\/",
                    "https:\/\/xxx.xxx.xx\/"
                ]
            }
        ],
        "mail_from_address": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpmode": "smtp",
        "mail_sendmailmode": "smtp",
        "mail_domain": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpauthtype": "PLAIN",
        "mail_smtpauth": 1,
        "mail_smtphost": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpport": "465",
        "mail_smtpname": "***REMOVED SENSITIVE VALUE***",
        "mail_smtppassword": "***REMOVED SENSITIVE VALUE***",
        "mail_smtpsecure": "ssl",
        "maintenance": false,
        "memcache.local": "\\OC\\Memcache\\Redis",
        "memcache.distributed": "\\OC\\Memcache\\Redis",
        "redis": {
            "host": "***REMOVED SENSITIVE VALUE***",
            "port": 6379,
            "dbindex": 1
        },
        "memcache.locking": "\\OC\\Memcache\\Redis",
        "app_install_overwrite": [
            "user_external"
        ]
    }
}

List of activated Apps

Enabled:
  - activity: 2.20.0
  - calendar: 4.6.4
  - circles: 28.0.0-dev
  - cloud_federation_api: 1.11.0
  - collectives: 2.9.2
  - comments: 1.18.0
  - contacts: 5.5.1
  - dav: 1.29.1
  - deck: 1.12.1
  - federatedfilesharing: 1.18.0
  - files: 2.0.0
  - files_accesscontrol: 1.18.0
  - files_automatedtagging: 1.18.0
  - files_external: 1.20.0
  - files_lock: 28.0.1
  - files_reminders: 1.1.0
  - files_sharing: 1.20.0
  - files_trashbin: 1.18.0
  - files_versions: 1.21.0
  - forms: 4.1.0
  - groupfolders: 16.0.3
  - impersonate: 1.15.0
  - integration_openai: 1.2.0
  - lookup_server_connector: 1.16.0
  - notifications: 2.16.0
  - oauth2: 1.16.3
  - password_policy: 1.18.0
  - polls: 6.0.1
  - previewgenerator: 5.4.0
  - privacy: 1.12.0
  - provisioning_api: 1.18.0
  - richdocuments: 8.3.1
  - settings: 1.10.1
  - sharebymail: 1.18.0
  - snappymail: 2.33.0
  - systemtags: 1.18.0
  - tasks: 0.15.0
  - text: 3.9.1
  - text_templates: 1.0.4
  - theming: 2.3.0
  - theming_customcss: 1.15.0
  - twofactor_backupcodes: 1.17.0
  - twofactor_nextcloud_notification: 3.8.0
  - twofactor_totp: 10.0.0-beta.2
  - updatenotification: 1.18.0
  - user_external: 3.2.0
  - viewer: 2.2.0
  - workflowengine: 2.10.0
Disabled:
  - admin_audit: 1.18.0
  - bruteforcesettings: 2.8.0
  - contactsinteraction: 1.9.0 (installed 1.8.0)
  - dashboard: 7.8.0 (installed 7.6.0)
  - drawio: 3.0.2 (installed 3.0.2)
  - encryption: 2.16.0
  - extract: 1.3.6 (installed 1.3.6)
  - federation: 1.18.0 (installed 1.17.0)
  - files_markdown: 2.4.1 (installed 2.4.1)
  - files_mindmap: 0.0.30 (installed 0.0.30)
  - files_pdfviewer: 2.9.0 (installed 2.6.0)
  - files_retention: 1.17.0 (installed 1.17.0)
  - files_rightclick: 0.15.1 (installed 1.6.0)
  - files_texteditor: 2.15.1 (installed 2.15.1)
  - firstrunwizard: 2.17.0 (installed 2.11.0)
  - logreader: 2.13.0 (installed 2.12.0)
  - metadata: 0.19.0 (installed 0.19.0)
  - nextcloud_announcements: 1.17.0 (installed 1.10.0)
  - occweb: 0.1.1 (installed 0.1.1)
  - photos: 2.4.0 (installed 2.3.0)
  - recommendations: 2.0.0 (installed 1.0.0)
  - related_resources: 1.3.0 (installed 1.2.0)
  - serverinfo: 1.18.0 (installed 1.17.0)
  - side_menu: 3.11.5 (installed 3.11.5)
  - support: 1.11.0 (installed 1.7.0)
  - survey_client: 1.16.0 (installed 1.10.0)
  - suspicious_login: 6.0.0
  - user_ldap: 1.19.0
  - user_status: 1.8.1 (installed 1.7.0)
  - weather_status: 1.8.0 (installed 1.2.0)
  - workflow_pdf_converter: 1.13.0 (installed 1.13.0)

Nextcloud Signing status

No errors have been found.

Nextcloud Logs

{
	"reqId": "l1RVC17fpA8xwNanGU9K",
	"level": 3,
	"time": "2024-02-13T10:00:47+00:00",
	"remoteAddr": "217.230.42.195",
	"user": "pniebeling",
	"app": "no app in context",
	"method": "DELETE",
	"url": "/ocs/v2.php/apps/notifications/api/v2/notifications",
	"message": "Exception thrown: OC\\Authentication\\Exceptions\\TokenPasswordExpiredException",
	"userAgent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36",
	"version": "28.0.2.5",
	"exception": {
		"Exception": "OC\\Authentication\\Exceptions\\TokenPasswordExpiredException",
		"Message": "",
		"Code": 0,
		"Trace": [
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/lib/private/Authentication/Token/Manager.php",
				"line": 154,
				"function": "getTokenById",
				"class": "OC\\Authentication\\Token\\PublicKeyTokenProvider",
				"type": "->",
				"args": [
					"*** sensitive parameters replaced ***"
				]
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/apps/notifications/lib/Push.php",
				"line": 580,
				"function": "getTokenById",
				"class": "OC\\Authentication\\Token\\Manager",
				"type": "->",
				"args": [
					"*** sensitive parameters replaced ***"
				]
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/apps/notifications/lib/Push.php",
				"line": 427,
				"function": "validateToken",
				"class": "OCA\\Notifications\\Push",
				"type": "->",
				"args": [
					"*** sensitive parameters replaced ***"
				]
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/apps/notifications/lib/Push.php",
				"line": 199,
				"function": "pushDeleteToDevice",
				"class": "OCA\\Notifications\\Push",
				"type": "->",
				"args": [
					"*** sensitive parameters replaced ***"
				]
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/apps/notifications/lib/App.php",
				"line": 99,
				"function": "flushPayloads",
				"class": "OCA\\Notifications\\Push",
				"type": "->"
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/lib/private/Notification/Manager.php",
				"line": 289,
				"function": "flush",
				"class": "OCA\\Notifications\\App",
				"type": "->"
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/apps/notifications/lib/Controller/EndpointController.php",
				"line": 280,
				"function": "flush",
				"class": "OC\\Notification\\Manager",
				"type": "->"
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/lib/private/AppFramework/Http/Dispatcher.php",
				"line": 230,
				"function": "deleteAllNotifications",
				"class": "OCA\\Notifications\\Controller\\EndpointController",
				"type": "->"
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/lib/private/AppFramework/Http/Dispatcher.php",
				"line": 137,
				"function": "executeController",
				"class": "OC\\AppFramework\\Http\\Dispatcher",
				"type": "->"
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/lib/private/AppFramework/App.php",
				"line": 184,
				"function": "dispatch",
				"class": "OC\\AppFramework\\Http\\Dispatcher",
				"type": "->"
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/lib/private/Route/Router.php",
				"line": 315,
				"function": "main",
				"class": "OC\\AppFramework\\App",
				"type": "::"
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/ocs/v1.php",
				"line": 65,
				"function": "match",
				"class": "OC\\Route\\Router",
				"type": "->"
			},
			{
				"file": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/ocs/v2.php",
				"line": 23,
				"args": [
					"/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/ocs/v1.php"
				],
				"function": "require_once"
			}
		],
		"File": "/var/www/vhosts/xxx.xxx.xx/httpdocs-nextcloud/lib/private/Authentication/Token/PublicKeyTokenProvider.php",
		"Line": 216,
		"CustomMessage": "Exception thrown: OC\\Authentication\\Exceptions\\TokenPasswordExpiredException"
	}
}

Additional info

No response
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
0. Needs triage Pending check for reproducibility or if it fits our roadmap 28-feedback bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix(push): Correctly ignore push tokens that are not valid again nextcloud/notifications
2 participants
@gnilebein @szaimen