Project

General

Profile

Actions

Bug #14561

closed

Successful workbench login redirects to the wrong endpoint

Added by james mccallum over 5 years ago. Updated about 4 years ago.

Status:
Resolved
Priority:
Normal
Assigned To:
-
Category:
-
Target version:
-
Story points:
-

Description

There appears to be a problem when manually installing Arvados Workbench (version 1.2.1-1)"

After clicking the login button in Workbench is redirects to the SSO servers sign in page:

http://auth.local/users/sign_in

After a successful login it redirects to:

http://auth.local/auth/joshid/callback?return_to=http%3A%2F%2Fworkbench.domain.local%2Fusers%2Fwelcome%3Freturn_to%3D%252F&code=d6213b102032b69b985a7939fdbd7340&response_type=code&state=8b30d022eb1eab6d1f5b5e51159d7e98905be687e33401c7

But that route doesn't exist because it should be redirecting to the API server:

http://domain.local/auth/joshid/callback?... If you fix the url up manually in the browser it logs in OK (IE change auth.local to domain.local).

How can I resolve this?

Actions #1

Updated by Chrystian Klingenberg over 5 years ago

  • Target version set to sprint 14
Actions #2

Updated by Michał Kłobukowski over 5 years ago

  • Status changed from New to Feedback
Actions #3

Updated by Michał Kłobukowski over 5 years ago

It seems to be an issue not connected to WB2

Actions #4

Updated by Pawel Kowalczyk about 5 years ago

  • Target version changed from sprint 14 to Backlog Q1, Q2
Actions #5

Updated by Chrystian Klingenberg about 5 years ago

  • Target version deleted (Backlog Q1, Q2)
Actions #6

Updated by Tom Morris about 5 years ago

  • Project changed from Arvados Workbench 2 to Arvados
  • Status changed from Feedback to New

Based on the version number, this sounds like Workbench 1, not Workbench 2, so moving to the main Arvados project.

It sounds like it's likely to be a configuration issue and is probably related to #14527

Actions #7

Updated by Tom Morris about 5 years ago

  • Related to Bug #14527: Workbench/API Authentication issue added
Actions #8

Updated by Tom Clegg about 5 years ago

SSO provider ("auth.local") redirects to the callback URL that was provided by arvados-api-server, so I think this is your API server being confused about its own address. The API server config file (application.yml) lets you specify host/port/protocol in case the auto-detect approach doesn't work for your setup (many things, including Nginx proxy configuration, can throw off the auto-detect result). Try this in your /etc/arvados/api/application.yml file:

  host: domain.local
Actions #9

Updated by Tom Clegg about 5 years ago

  • Related to deleted (Bug #14527: Workbench/API Authentication issue )
Actions #10

Updated by james mccallum about 5 years ago

Initially I just added a custom route into the auth rails server which was a temporary work around, but since upgrading to 1.21 about a month ago this issue has been resolved.

Actions #11

Updated by Peter Amstutz about 4 years ago

  • Status changed from New to Resolved
Actions

Also available in: Atom PDF