Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Stuck in login loop #24

Open
peirix opened this issue Jan 3, 2024 · 3 comments
Open

Stuck in login loop #24

peirix opened this issue Jan 3, 2024 · 3 comments

Comments

@peirix
Copy link

peirix commented Jan 3, 2024

I've got this setup:

openidConnect: {
    addPlugin: true,
    op: {
        issuer: process.env.NUXT_OPENID_CONNECT_OP_ISSUER || '',
        clientId: process.env.NUXT_OPENID_CONNECT_OP_CLIENT_ID || '',
        clientSecret: process.env.NUXT_OPENID_CONNECT_OP_CLIENT_SECRET || '',
        callbackUrl: process.env.NUXT_OPENID_CONNECT_OP_CALLBACK_URL || '', // http://localhost:3000/mine-rom
        scope: ['openid userid-feide']
    },
    config: {
        debug: true, // optional, default is false
        response_type: 'code',
        secret: 'oidc._sessionid',
        cookie: { loginName: '' },
        cookiePrefix: 'oidc._',
        cookieEncrypt: true,
        cookieEncryptKey: 'bfnuxt9c2470cb477d907b1e0917oidc', // 32
        cookieEncryptIV: 'ab83667c72eec9e4', // 16
        cookieEncryptALGO: 'aes-256-cbc',
        cookieMaxAge: 24 * 60 * 60, //  default one day
        cookieFlags: {
            // default is empty
            access_token: {
                httpOnly: true,
                secure: false
            }
        }
    }
}

The vue-page mine-rom is set up to use the same auth middleware in your playground folder.

When I go to login, I'm sent back to /mine-rom with params: ?redirect=/mine-rom&code=fae65820-9bb2-48be-b02d-0ce4a1749022 And then it triggers the auth middleware and for some reason it detects I'm not logged in, so it sends me back to the login with this redirect url: http://localhost:3000/mine-rom?redirect=/mine-rom?redirect=/mine-rom&code=fae65820-9bb2-48be-b02d-0ce4a1749022 and if I login from that it just keeps adding redirect params to the url.

In my localstorage I see a key oidc._user which is just set to {}, and in my cookies I see the oidc._sessionid has a hashed value.
@raj-saroj-vst-au4
Copy link

raj-saroj-vst-au4 commented Jan 19, 2024
edited
Loading

comment out the callback url, you're welcome...

@aborn
Copy link
Owner

aborn commented Jan 30, 2024

How to reproduction this bug ? Can you show me an example?

@leamsigc
Copy link

leamsigc commented Jul 4, 2024

Make sure that the response type from the issuer is correct

Example I have one keycloak service that is returning response_type: "code", but i set it to response_type: "id_token token", that couse the login loop

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@peirix @aborn @leamsigc @raj-saroj-vst-au4