UIA for deleting devices is not possible

[famedly-bot]

In GitLab by @krille-chan on Oct 4, 2022, 15:31

App uses the https://spec.matrix.org/v1.4/client-server-api/#post_matrixclientv3delete_devices endpoint to delete devices. The UIA Proxy always responses with "User not found or invalid password" while I have used the same username and password to login before. I'm sending the complete matrix ID for authentication. I've also tried to send localpart and the displayname. So I found no workaround for Frontend. Unfortunately this blocks our integration tests and our releases as long as it is not working on integration-tests-stable.famedly.de

• [x] The issue title and description should be explained in English language.
• [ ] Feature request is provided in story template:
• [ ] Business value is clear and understood.
• [x] Every attached media (if applicable) should include a short description.
• [x] Engineer has confirmed this feature is technically feasible.

[famedly-bot]

In GitLab by @krille-chan on Oct 4, 2022, 15:33

mentioned in issue undefined##undefined

[famedly-bot]

In GitLab by @agraven on Oct 4, 2022, 15:41

Is it specifically this endpoint where authorization fails, i.e. does things like login still work? If it still works in some places but not others that probably rules out the username mappings accidentally getting deleted again, and the cause in that case is most likely either a configuration issue or a bug in UIAP's handling of the per-endpoint flow configuration for the device deletion endpoint.

[famedly-bot]

In GitLab by @krille-chan on Oct 5, 2022, 08:24

afaik only the delete_devices thingy. Login works. Other UIA has not been tested yet :-/

is there a quick way to help us here? How can the username mappings be fixed?

[famedly-bot]

In GitLab by @agraven on Oct 5, 2022, 14:48

The username mapping will be regenerated for an individual user by logging in again.

[famedly-bot]

In GitLab by @nico-famedly on Oct 5, 2022, 14:49

Closed in favour of #37

[famedly-bot]

In GitLab by @krille-chan on Oct 25, 2022, 14:41

I have the problem again with my user "krille_test" on integration-tests-stable.famedly.de. I can't use UIA for deleting devices

[famedly-bot]

In GitLab by @nikzen on Oct 26, 2022, 09:30

marked this issue as related to undefined##undefined

[famedly-bot]

In GitLab by @Techno-Disaster on Nov 10, 2022, 16:40

o.O TIL we can get logs from grafana. /me found these when trying to reset key. (fails at delete devices)

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.558 [PasswordProvider Ldap] info: Checking password for ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g...

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.558 [PasswordProvider Ldap] verbose: getLoginInfo: start for ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.745 [PasswordProvider Ldap] verbose: Binding to LDAP using configured bindDN....

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.749 [PasswordProvider Ldap] verbose: ldap: search subtree=dc=integration-tests-stable,dc=famedly,dc=de for user=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g using filter (&(|(objectClass=inetOrgPerson))(uid=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g)(enabled=TRUE))

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.771 [PasswordProvider Ldap] verbose: ldap: couldn't find user with dn=uid=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g,undefined, fetching from username mapper...

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.771 [UsernameMapper] verbose: Looking up username from localpart=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g in mode=HMAC-SHA256

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.771 [PasswordProvider Ldap] verbose: usernameMapper: found cached username=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g for localpart=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.772 [PasswordProvider Ldap] verbose: usernameMapper: trying to find user with persistentId=persistentId,                    cached value is '[object Object]', escaped to 'objectbject'

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.772 [PasswordProvider Ldap] verbose: ldap: search via pid: persistentId=objectbject,                    subtree=dc=integration-tests-stable,dc=famedly,dc=de,                   scope: sub,                     filter: (persistentId=objectbject)

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.783 [PasswordProvider Ldap] verbose: ldap: trying to retrieve dn for username=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g mapped from localpart=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.817 [PasswordProvider Ldap] warn: ldap: Found 0 entries for ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g, login not possible

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.817 [PasswordProvider Ldap] info: getLoginInfo: Could not find or authenticate ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g, aborting

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.817 [PasswordProvider Ldap] verbose: getLoginInfo: found dn= for user=ktt90dmjncfvchuj6a3eahq0yzqv7wfc2rb39dqz3hqr7yeguz6g

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.818 [PasswordProvider Ldap] info: Invalid username/password

2022-11-10 16:32:50 (no unique labels)  
Nov-10 15:32:50.818 [StageHandler (deleteDevices)] info: User didn't manage to complete this stage

[famedly-bot]

In GitLab by @MarkTalh on Dec 16, 2022, 13:33

marked the checklist item The issue title and description should be explained in English language. as completed

[famedly-bot]

In GitLab by @MarkTalh on Dec 16, 2022, 13:33

marked the checklist item Every attached media (if applicable) should include a short description. as completed

[famedly-bot]

In GitLab by @MarkTalh on Dec 16, 2022, 13:33

marked the checklist item Engineer has confirmed this feature is technically feasible. as completed

[famedly-bot]

In GitLab by @MarkTalh on Dec 16, 2022, 13:34

@famedly/company/backend Please provide a story template:

As a — I want — So that —

Please elaborate more on the value for users.

Have there been any updates on this?

[famedly-bot]

In GitLab by @nikzen on Jan 17, 2023, 09:23

We think that this bug is solved with the admin-api update. Nevertheless, we keep it open and on triage stage.

[famedly-bot]

In GitLab by @nikzen on Jan 17, 2023, 09:24

moved to undefined##undefined