-
Notifications
You must be signed in to change notification settings - Fork 1.3k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unified Beta. Cannot login anymore after adding 2FA #2721
Comments
Only difference I could see is that the cloud version is sending some |
Getting a |
Yeah it seems to be completely reverse proxy issue as I suspected, I was not able to figure it out how to get it working with nginx, probably some middleware I have in place for "mitigating exploits" is blocking this 🤷. If I tried with vanilla traefik it worked out of the box, mostly - app notifications/automatic vault sync does not work but othewise I am able to log in with 2fa and update and add passwords. Be great if somewhere it was documented what headers need to be set/passed for all the functions to work in case of self hosting behind reverse proxy |
Can you post your nginx configuration? I'm running nginx and the latest bitwarden unified server (2023.2) and I don't have issues with 2FA. |
ok let me see what I can find out regarding the nginx conf, it was not a regular nginx it was ingress-nginx as I am running it in kubernetes, currently swapped ingress controller for traefik as it gets me mostly working experience, apps still need manual sync |
And I imagine the automatic sync does not work because I see these in the logs
|
In my case, sync only works on my Android phone: if I change a password from my browser , on a computer, the sync is automatic con the phone. The opposite is not true, the Chrome extension needs a manual sync. |
Also my troubles might have been related to this, was going thought the logs recommended by @justindbaur and saw following:
I was moving between Long story short I was able reproduce my issue with "traefik" now, when I moved to
Used https://github.com/bitwarden/server/blob/master/src/Sql/dbo/Tables/User.sql as reference |
Steps To Reproduce
beta
anddev
tagExpected Result
Two-step login screen appears like this:
Actual Result
I get red
unexpected error occured
from all the clients - web, desktop, android.When I look at the response that web client returns I see:
Sent request headers:
Screenshots or Videos
No response
Additional Context
Removing 2FA from a user fixes the login. Not sure if there is something wrong with my nginx setup, any guidance would be helpful here.
Githash Version
34544f2-dirty
Environment Details
Ubuntu 22.04 VM
Database Image
postgres: 15
Issue-Link
#2480
Issue Tracking Info
The text was updated successfully, but these errors were encountered: