Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

HTTPError: 400 Client Error: Bad Request for url: https://aai.egi.eu/auth/realms/egi/protocol/openid-connect... #19513

Closed
galaxyproject-sentryintegration bot opened this issue Feb 2, 2025 · 2 comments
Closed

HTTPError: 400 Client Error: Bad Request for url: https://aai.egi.eu/auth/realms/egi/protocol/openid-connect... #19513

galaxyproject-sentryintegration bot opened this issue Feb 2, 2025 · 2 comments
Labels
area/auth Authentication and authorization kind/bug

Comments

@galaxyproject-sentryintegration
Copy link

Sentry Issue: USEGALAXY-EU-MAIN-1JBA

HTTPError: 400 Client Error: Bad Request for url: https://aai.egi.eu/auth/realms/egi/protocol/openid-connect/token
(1 additional frame(s) were not displayed)
...
  File "galaxy/authnz/managers.py", line 291, in refresh_expiring_oidc_tokens_for_provider
    refreshed = backend.refresh(trans, auth)
  File "galaxy/authnz/psa_authnz.py", line 196, in refresh
    user_authnz_token.refresh_token(strategy)

An error occurred when refreshing user token
@galaxyproject-sentryintegration galaxyproject-sentryintegration bot added area/auth Authentication and authorization kind/bug labels Feb 2, 2025
@mvdbeek mvdbeek mentioned this issue Feb 2, 2025
Merged
4 tasks
@kysrpex
Copy link
Contributor

kysrpex commented Feb 3, 2025

Given #19514 and the fact that the database entries causing the bug look like this,

{
  "access_token": "********",
  "auth_time": 1627302378,
  "expires_in": 3599,
  "id_token": "********",
  "token_type": "Bearer"
}

so indeed ("refresh_token" not in user_authnz_token.extra_data) is True, rather than user_authnz_token.extra_data["refresh_token"] is None (see social-core code causing the bug); to me it makes sense to close the issue and only reopen it if the problem arises again.

@mvdbeek
Copy link
Member

mvdbeek commented Feb 3, 2025

There's also https://sentry.galaxyproject.org/share/issue/45594f7a411749f68b7292edeb40cafc/ that might require a similar fix ?

@mvdbeek mvdbeek closed this as completed in 083ed71 Feb 3, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
area/auth Authentication and authorization kind/bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mvdbeek @kysrpex