BUG_ Login via Cloudflare Tunnels 2FA #90
Replies: 6 comments 1 reply
-
Hi @FabioEight , |
Beta Was this translation helpful? Give feedback.
-
Hello, As far as I know, it should be possible to bypass the Cloudflare ZTNA using a rule intercepting the HTTP header, maybe it could be useful for this case: |
Beta Was this translation helpful? Give feedback.
-
Im encountering the same error but Im not using ZTNA, just Cloudflare proxy. I do have Traefik as reverse proxy though. |
Beta Was this translation helpful? Give feedback.
-
@FabioEight, @sziyan, Could you retry without the Oauth secret and with the last Firefly-iii backend version: |
Beta Was this translation helpful? Give feedback.
-
I'm having exactly the same issues still existing on |
Beta Was this translation helpful? Give feedback.
-
@FabioEight A new OTA update has been released: 0.6.2 with the Personal Access Token as a authentication option. |
Beta Was this translation helpful? Give feedback.
-
Describe the bug
My Firefly III instance is reachable at firefly.mydomain.com and is protected by Cloudflare ZTNA (https://www.cloudflare.com/products/zero-trust/zero-trust-network-access/).
Basically, Cloudflare adds a 2FA protection (mail TOTP code) on top of the domain. Once you pass the challenge, you are forwarded to the service.
I managed to login via Abacus only by reaching the domain locally. If I try the domain firefly.mydomain.com, I'm asked for the 2FA challenge, I log into Firefly III and I got an error message.
To Reproduce
Steps to reproduce the behavior:
Expected behavior
Remote login.
Screenshots
If applicable, add screenshots to help explain your problem.
Smartphone (please complete the following information):
Is it possible to use Abacus via Cloudlfare ZTNA protection?
Thank you!
Beta Was this translation helpful? Give feedback.
All reactions