Closed mike-lloyd03 closed 1 year ago
@mike-lloyd03 please enable HTTP logging and post the lines.
Sure. Thanks.
This issue was marked stale because it has been open for 30 days with no activity. Remove the stale label or comment or this will be closed in 7 days.
Sorry for the late answer:
23-08-18 21:38:38:522 [ debug sync.credentials.oauth ] [ OCC::OAuth::startAuthentication()::<lambda ]: registration endpoint not provided or empty: QUrl("")
This is just a debug message. If we don't get a registration endpoint we just don't use dynamic registration and fall back to the default client id and secret. So we need to find another reason for your issue.
Thanks for the reply. Where else should I be looking?
Thanks for the reply. Where else should I be looking?
What are the last lines with [ info sync.httplogger ]:
? Maybe start the desktop sync client with --logflush
parameter, to make sure you see all log lines immediately.
Here you can find more information:
Okay I ran it again with --flushlogs
.
23-09-19 22:53:21:360 [ info sync.httplogger ]: "4b95070c-c63c-403e-856f-789f0deb555d: Request: GET https://ocis.my.server/.well-known/webfinger?resource=https://ocis.my.server Header: { User-Agent: Mozilla/5.0 (Linux) mirall/4.2.0 (ownCloud, arch-6.4.3-arch1-1 ClientArchitecture: x86_64 OsArchitecture: x86_64), Accept: */*, X-Request-ID: 4b95070c-c63c-403e-856f-789f0deb555d, Original-Request-ID: 4b95070c-c63c-403e-856f-789f0deb555d, } Data: []"
23-09-19 22:53:21:650 [ info sync.httplogger ]: "4b95070c-c63c-403e-856f-789f0deb555d: Response: GET 200 (289ms) https://ocis.my.server/.well-known/webfinger?resource=https://ocis.my.server Header: { Alt-Svc: h3=\":443\"; ma=2592000, Cache-Control: no-cache, no-store, max-age=0, must-revalidate, value, Content-Length: 140, Content-Security-Policy: frame-ancestors 'none', Content-Type: application/json; charset=utf-8, Date: Wed, 20 Sep 2023 05:53:21 GMT, Expires: Thu, 01 Jan 1970 00:00:00 GMT, Last-Modified: Wed, 20 Sep 2023 05:53:21 GMT, Server: Caddy, Vary: Origin, X--Version: , X-Content-Type-Options: nosniff, X-Frame-Options: DENY, } Data: [{\"subject\":\"https://ocis.my.server\",\"links\":[{\"rel\":\"http://openid.net/specs/connect/1.0/issuer\",\"href\":\"https://ocis.my.server\"}]}\n]"
23-09-19 22:53:21:667 [ info sync.httplogger ]: "45e43b8d-8ba0-4a26-8bf2-9a27b53d9a6a: Request: GET https://ocis.my.server/.well-known/openid-configuration Header: { User-Agent: Mozilla/5.0 (Linux) mirall/4.2.0 (ownCloud, arch-6.4.3-arch1-1 ClientArchitecture: x86_64 OsArchitecture: x86_64), Accept: */*, X-Request-ID: 45e43b8d-8ba0-4a26-8bf2-9a27b53d9a6a, Original-Request-ID: 45e43b8d-8ba0-4a26-8bf2-9a27b53d9a6a, } Data: []"
23-09-19 22:53:21:678 [ info sync.httplogger ]: "45e43b8d-8ba0-4a26-8bf2-9a27b53d9a6a: Response: GET 200 (11ms) https://ocis.my.server/.well-known/openid-configuration Header: { Alt-Svc: h3=\":443\"; ma=2592000, Cache-Control: no-cache, no-store, max-age=0, must-revalidate, value, Content-Length: 1802, Content-Security-Policy: frame-ancestors 'none', Content-Type: application/json; encoding=utf-8, Date: Wed, 20 Sep 2023 05:53:21 GMT, Expires: Thu, 01 Jan 1970 00:00:00 GMT, Last-Modified: Wed, 20 Sep 2023 05:53:21 GMT, Server: Caddy, Vary: Origin, X-Content-Type-Options: nosniff, X-Frame-Options: DENY, X-Idp-Version: 3.0.0, } Data: [{\n \"issuer\": \"https://ocis.my.server\",\n \"authorization_endpoint\": \"https://ocis.my.server/signin/v1/identifier/_/authorize\",\n \"token_endpoint\": \"https://ocis.my.server/konnect/v1/token\",\n \"userinfo_endpoint\": \"https://ocis.my.server/konnect/v1/userinfo\",\n \"end_session_endpoint\": \"https://ocis.my.server/signin/v1/identifier/_/endsession\",\n \"check_session_iframe\": \"https://ocis.my.server/konnect/v1/session/check-session.html\",\n \"jwks_uri\": \"https://ocis.my.server/konnect/v1/jwks.json\",\n \"scopes_supported\": [\n \"openid\",\n \"offline_access\",\n \"profile\",\n \"email\",\n \"LibgreGraph.UUID\",\n \"LibreGraph.RawSub\"\n ],\n \"response_types_supported\": [\n \"id_token token\",\n \"id_token\",\n \"code id_token\",\n \"code id_token token\"\n ],\n \"subject_types_supported\": [\n \"public\"\n ],\n \"id_token_signing_alg_values_supported\": [\n \"RS256\",\n \"RS384\",\n \"RS512\",\n \"PS256\",\n \"PS384\",\n \"PS512\"\n ],\n \"userinfo_signing_alg_values_supported\": [\n \"RS256\",\n \"RS384\",\n \"RS512\",\n \"PS256\",\n \"PS384\",\n \"PS512\"\n ],\n \"request_object_signing_alg_values_supported\": [\n \"ES256\",\n \"ES384\",\n \"ES512\",\n \"RS256\",\n \"RS384\",\n \"RS512\",\n \"PS256\",\n \"PS384\",\n \"PS512\",\n \"none\",\n \"EdDSA\"\n ],\n \"token_endpoint_auth_methods_supported\": [\n \"client_secret_basic\",\n \"none\"\n ],\n \"token_endpoint_auth_signing_alg_values_supported\": [\n \"RS256\",\n \"RS384\",\n \"RS512\",\n \"PS256\",\n \"PS384\",\n \"PS512\"\n ],\n \"claims_parameter_supported\": true,\n \"claims_supported\": [\n \"iss\",\n \"sub\",\n \"aud\",\n \"exp\",\n \"iat\",\n \"name\",\n \"family_name\",\n \"given_name\",\n \"email\",\n \"email_verified\"\n ],\n \"request_parameter_supported\": true,\n \"request_uri_parameter_supported\": false\n}\n]"
This is the last request you see in the logs before it gets stuck? Nothing else? 🤔
No sorry, those are just the httplogger logs. There's three more entries after that:
23-09-21 07:52:58:337 [ debug sync.credentials.oauth ] [ OCC::OAuth::fetchWellKnown()::<lambda ]: parsing .well-known reply successful, auth endpoint QUrl("https://ocis.my.server/signin/v1/identifier/_/authorize") and token endpoint QUrl("https://ocis.my.server/konnect/v1/token") and registration endpoint QUrl("")
23-09-21 07:52:58:337 [ debug sync.credentials.oauth ] [ OCC::OAuth::startAuthentication()::<lambda ]: registration endpoint not provided or empty: QUrl("")
23-09-21 07:53:01:685 [ info gui.application ]: Trying tray icon, tray available: false
This seems to be a Wayland issue. I just tried to log in using an X session and authenticated without issue.
And looks like I didn't provide this info when I first opened the issue: currently running Hyprland with Nvidia patch.
Hmm is there a modal dialog that got eaten by wayland?
I don't know. After authenticating on Xorg, I'm good to go on Wayland. I logged out and removed my account from the client and now I can't reproduce the error. Auth works as expected on Wayland now. I ran a system update this morning so maybe that fixed it?
Thanks for your help. I'll close this now.
Pre-submission Checks
Describe the bug
When attempting to log in to my OCIS server, the initial window "What is your server's address?" disappears after entering the URL. The main window stays open but appears frozen. No mouse or keyboard events are recognized.
Looking at the client logs, it appears that the server is not sending the
registration endpoint
URL when it attempts to authenticate.I am running OCIS v3.0.0 using Docker.
Docker compose file:
Expected behavior
Should generate link to authenticate with browser.
Steps to reproduce the issue
No response
Screenshots
No response
Logs
Client Logs:
Server Logs:
Client version number
ownCloud 4.2.0 f5a29b Libraries Qt 5.15.10, OpenSSL 3.1.1 30 May 2023 Using virtual files plugin: suffix arch-6.4.3-arch1-1
Desktop environment (Linux only)
Linux 6.4.3-arch1-1
Client package version and origin (Linux only)
Installed from Arch Package Repository
Installation path (Windows only)
No response
Server information
ownCloud | Infinite Scale Community 3.0.0 7.0.0
Additional context
No response