New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Can't stay logged in after update #2487
Comments
I'm having the same issues, but I'm running it as a docker container. Downgrading to 3.1.1 fixes the issue for now. |
Are you running Leantime behind a proxy? Additionally the cookie sameSite parameter was set to "Strict" Can you check if there are any errors in logs/error.log ? If there is a session mismatch (client ip + http_host) there will be entries stating: "failed ip and host check" |
I'm not using Docker with a reverse proxy. Just PHP-FPM 8.1 and Nginx. My Nginx config looks like this:
|
I thought maybe it was Cloudflare or my floating IP, but I've tried disabling proxying and even just putting the direct IP of the server in my local hosts file. Makes no difference. |
Can you set the debug flag to 1 (in your config) and post the contents of
logs/error.log within the leantime directory?
Also can you try updating to 3.1.3. I added an additional check to the
session manager which may address the issue.
…On Tue, Apr 30, 2024 at 12:31 MNylif ***@***.***> wrote:
@marcelfolaron <https://github.com/marcelfolaron>,
I have tried installing this and running this all the ways the
documentation instructs even using panels like Cloudron, and other devs to
help me with this. It the login bugs out and I am unable to get in. I use
Cloudflare and even changing those settings didn't help.
After logging in, this is immediately what pops up. After you sign in
again, it just goes back to the main login page.
Screenshot.2024-04-30.at.11.29.10.AM.png (view on web)
<https://github.com/Leantime/leantime/assets/133275670/b00dc48d-96d4-4eac-8678-26e7af4610dc>
—
Reply to this email directly, view it on GitHub
<#2487 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/ALG4EFR7SLJTFFQGBKFPO7LY77BPLAVCNFSM6AAAAABGVKS3JOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDAOBVHA4TAMRWHE>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
I reinstalled with 3.1.3 and the issue is resolved. Thanks! |
Glad that fixed it. My guess is that HTTP_HOST is not set under some circumstances or potentially changes. Which is why it was resetting the session. I am now using SERVER_NAME is backup in case http_host is not set. |
@marcelfolaron What is the expected way to resolve this for docker and reverse proxies. I didn't see any new instructions for configuration. I'm tagging you because I didn't want to create a new issue. I've got traffic coming through cloudflare and then traefik to the leantime docker container. Attempted running latest as of today, 3.1.4, 3.1.3, 3.1.2. Downgrading to 3.1.1 does resolve the issue for me. |
Can you ensure that your reverse proxy forwards the remote_address of the
user?
That should fix it.
…On Mon, May 6, 2024 at 09:17 Brandon ***@***.***> wrote:
@marcelfolaron <https://github.com/marcelfolaron> What is the expected
way to resolve this for docker and reverse proxies. I didn't see any new
instructions for configuration. I'm tagging you because I didn't want to
create a new issue.
I've got traffic coming through cloudflare and then traefik to the
leantime docker container.
Attempted running latest as of today, 3.1.4, 3.1.3, 3.1.2.
Downgrading to 3.1.1 does resolve the issue for me.
—
Reply to this email directly, view it on GitHub
<#2487 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/ALG4EFRTGJROV6JG5VSNDDLZA57F5AVCNFSM6AAAAABGVKS3JOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDAOJVHE4TQNZUGM>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
Maybe this isn't what you are looking for, but after passing through Cloudflare, Traefik, and Authentik here are some ideas regarding the headers that are making there way to leantime. notable headers
|
What set up are you using
Describe the bug
I just updated to 3.1.2 by copying the site files over to my server, overwriting them. After the update, I can log in, but once I click on any second page, I'm immediately logged out and taken back to the login screen.
I don't see any errors at all in my nginx log. I'm using the example nginx config. In the browser console, I just see 404 errors for widgets because I'm apparently not authenticated.
I tried running some of the commands from the CLI, clearing the cache, running update again, running scheduled tasks, db migrate, none of it resolved the issue.
Any idea what could be going on here?
The text was updated successfully, but these errors were encountered: