When I open https://discussion.fedoraproject.org/ website in new container with firefox multi-account containers plugin, I get 400 error on log in screen. I cannot log in to the account.
Fedora infrastructure is not maintaining https://discussion.fedoraproject.org/. @kevin Do you know where to file bugs for discussion.fp.o?
Yes, we don't maintain discussion, but we do maintain the authentication to it. ;) So likely this is in our area...
So, some questions here:
Can you auth/login fine outside a container?
Do you auth with a login/pass/otp screen on id.fedoraproject.org normally? Or do you use a kerberos ticket?
Metadata Update from @kevin: - Issue priority set to: Waiting on Assignee (was: Needs Review) - Issue tagged with: low-gain, low-trouble, ops
I can authenticate/log in except for one container.
Normally I can login with authentication with a login/pass/otp screen at id.fedoraproject.org. The problem only happens when I try to login in another container.
Fedora infrastructure https://discussion.fedoraproject.org/ needs to be maintained. Because when I get 400 and 401 errors, it redirects me to this site to report the errors, it adds the URL of this site.
I also get the following errors: 401 error 400 error
401 Unauthorized: Unauthorized
mismatching_state: CSRF Warning! State not equal in request and response.
I can authenticate/log in except for one container. Normally I can login with authentication with a login/pass/otp screen at id.fedoraproject.org. The problem only happens when I try to login in another container.
Can you tell us more about this container? Whats the browser in it you are using? Can you try clearing cookies from *.fedoraproject.org and see if it helps? (or a new profile if it's a browser that has that).
I am wondering if you have an expired / bad auth cookie somehow. It should be cleared on browser restart however, so not sure.
It is.
To try and clarify:
Problems with discussion.fedoraproject.org we send on to the discussion folks Problems with authentication are here. You are in the right place.
I also get the following errors: 401 error 400 error 401 Unauthorized: Unauthorized mismatching_state: CSRF Warning! State not equal in request and response.
This is interesting.
Because this happens in just that one container, it sounds to me like there's some issue there... (and we haven't had any other particular reports of this).
I get this error no matter which container I move it to. I am using zen-browser
I think that this could be caused by the missing CSRF token (Cross-Site Request Forgery). That one is compared against existing session and as containers are creating their own sessions it probably thinks that you were not redirected from correct page, so the https://discussion.fedoraproject.org/ thinks that you are forging the HTTP request and doing something malicious.
CSRF token
https://discussion.fedoraproject.org/
Do you have similar issue with other fedoraproject.org websites?
fedoraproject.org
Metadata Update from @zlopez: - Issue priority set to: Waiting on Reporter (was: Waiting on Assignee)
Any news here? Did you figure this out? did you see zlopez's comment?
Log in to comment on this ticket.