Hide Forgot
Description of problem: When I login to starter (us-east-1) for the first time using my Github account (kargakis), every time, I get the following greeting in the console: ``` Error Invalid request Client state could not be verified Return to the console. ``` If I click the console link, I am redirected back to the login page, click LOGIN WITH REDHAT, and then I am able to login to the console as usual. Version-Release number of selected component (if applicable): Server https://api.starter-us-east-1.openshift.com:443 openshift v3.6.173.0.5 kubernetes v1.6.1+5115d708d7 How reproducible: Login in starter via Github. I recently requested to move my account from us-west-1 to us-east-1, not sure if it's related or not. Expected results: Expected to login w/o an error.
Seems to be an issue on Firefox 55.0.2 Working fine on Google Chrome
Michail, I can't reproduce, although I'm currently running FF 54.0.1. I do see this error in the console from an extension, but it looks unrelated. Error: user.metadata.annotations is undefined @https://console.starter-us-east-1.openshift.com/console/scripts/extensions.js:184:13 $digest@https://console.starter-us-east-1.openshift.com/console/scripts/vendor.js:6332:64 $apply@https://console.starter-us-east-1.openshift.com/console/scripts/vendor.js:6388:1 i@https://console.starter-us-east-1.openshift.com/console/scripts/vendor.js:5367:100 u@https://console.starter-us-east-1.openshift.com/console/scripts/vendor.js:5432:36 Kb/</x.onload@https://console.starter-us-east-1.openshift.com/console/scripts/vendor.js:5443:63 CC Jordan
I've been trying to reproduce over the last week in different browsers, using private browsing mode to simulate first login, etc. No luck. Michail, have you seen this again? There is auth logging we can enable if this is reproducible (although be careful what you add to the Bugzilla since it might have your access token). https://github.com/openshift/origin-web-console#enable--disable-console-log-output
Marking this low severity for now since it's infrequent and logging in a second time works.
I can't reproduce this anymore. Might having been related to my cookies or something. I am going to close it, thanks for taking a look!
Hi I can confirm, that bug still exists, cannot login for the first time to openshift free starter account for the first time from Firefox-ESR 52.4.0 on debian 9 amd64, still from chromium without problems. Regards j
(In reply to mixer3d from comment #7) > I can confirm, that bug still exists, cannot login for the first time to > openshift free starter account for the first time from Firefox-ESR 52.4.0 on > debian 9 amd64, still from chromium without problems. Reopening. I've seen this as well recently.
It appears that this happens if you are able visit the console initially using an http URL rather than https. You are directed to the login page, then redirected back to the https console URL. The nonce is stored in local storage, however, and it is undefined when we try to read it because the https console is a different domain.
The second login works because this time you are redirected to the login page from the https console.
Closing as 3.6 is no longer supported and the way login works has completely changed since 4.1. Please open a new bug if there is still an issue.