Description of problem: I created a new account using accounts.fedoraproject.org, and then validated the account via email. Navigated to the copr website and clicked the Login button. The browser throws an error about too many redirects. Logging into my account directly on accounts.fedoraproject.org shows my account information. Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. 2. 3. Actual results: Expected results: Additional info:
Thank you for filling the bug! This is hard to reproduce for me because I have an account for a long time. I would redirect you to appropriate people [1] but can you please share you FAS id, and characterize a bit more the redirects (who redirects where)? [1] https://pagure.io/fedora-infrastructure/new_issue
I'm getting the same issue, but with an old account. I have logged in via accounts.fedoraproject.org, and although I can log in to other areas (such as this bugzilla), clicking on the copr login icon results in firefox throwing an error stating this page isn't redirecting properly for the link https://copr.fedorainfracloud.org/login/?next=https://copr.fedorainfracloud.org/&openid_complete=yes&janrain_nonce=2021-04-02T09:56:48Z1eIAEc
Can you try to log in using the full FAS email + password? I've seen some people on IRC claiming there are long "delays" when logging-in using just the name + password. Adding Keving to CC, as he looked into this before.
*** Bug 1945977 has been marked as a duplicate of this bug. ***
Yesterday when I got the redirect issue (https://bugzilla.redhat.com/show_bug.cgi?id=1945977) I logged in with email+password, today I tried nickname+password and it let me through.
Just browsing to https://copr.fedorainfracloud.org/login using firefox 87 (installed from rpm firefox-87.0-2.fc33.x86_64) results in a "The page isn’t redirecting properly" error message. That page loads fine in Chromium. Since I can't browse to that page using firefox, I'm unable to log in using the full FAS email and password combination.
So, email address should no longer be working (we thought we dropped it from fas a long time ago, but apparently not). Try: * Make sure you are using all lower case (account system is lower case, if you try mixed at ipsilon, it will fail) * Use account login, NOT email address * login with your account login on https://accounts.fedoraproject.org. If that doesn't work, reset your password there and retry. * Clear all cookies and cache from *fedoraproject.org and fedorainfracloud.org * Try another browser/private browsing window. If all those fail, please drop by #fedora-admin on freenode or I guess use the infrastructure mailing list and we will try and track down whats going on and get it fixed. :)
Ok, closing. I believe that this is also related to bug 1948350 that is currently being fixed. *** This bug has been marked as a duplicate of bug 1948350 ***
(In reply to Kevin Fenzi from comment #8) > So, email address should no longer be working (we thought we dropped it from > fas a long time ago, but apparently not). I don't think it is correct that we do a loop in redirects in such a case; is it a Copr fault that this happens, or the accounts.f.o fault?
I agree a loop is not correct. I would expect one side or the other to error, not loop. That said, I have no idea which side is to blame. I guess we would need to data being passed back and forth?
*** Bug 1971591 has been marked as a duplicate of this bug. ***
Reopening, we forgot to take a look at breaking the indefinite loop.
See also: https://pagure.io/ipsilon/issue/358
I can easily reproduce. Funny thing is that even though I'm logged in, I can still get to the endless loop.
Since this is not my area of expertise (OpenID), it's hard for me to tell how this is actually meant to function. In the meantime I pinned this issue down to the difference that id.fp.o sends back for the two authentication flows: https://pagure.io/ipsilon/issue/358#comment-757370 tl;dr, it differs in `openid.{claimed_id,identity}`
Proposed a PR in ipsilon to fix this https://pagure.io//ipsilon/pull-request/362
Also a fix on Copr's side: https://pagure.io/copr/copr/pull-request/1956# The login still won't be possible, but instead you'll get an error message with what's wrong and you'll end up on the front page without the loop.
The PR is now merged, thanks Pavel for a well-done set of reviews!