-
Notifications
You must be signed in to change notification settings - Fork 55
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TOTP 7.0.0 unable to activate, unable to create backupcodes, spinner never stops #1325
Comments
I have exactly the same issue here on Nextcloud version 27.0.2_1.6.43 (as an app on TrueNAS from Charts) and TOTP version 9.0.0:
Tested with several users, none of them working. |
there's most likely an error in nextcloud.log |
The log shows:
immediately after the user clicks the "Enable TOTP" checkbox. Log level is on DEBUG. Sounds like this is an issue with us using LDAP? |
it's just a debug notice, not an error |
Yes, there is no other message in the log. But 2FA doesn't activate and the thing never stops spinning. Or is the log-level in NextCloud not "0 and above" and I have to set the log-level higher than 0? |
Log level is fine. 0 means it will log everything. I suggest to inspect the XHRs of the browser instead. There is a request sent when TOTP is enabled. See if that succeeds and what it returns. |
Hmm, the response looks fine but there is something weird: The username is an UUID, while Nextcloud and our LDAP use firstname.lastname as UID.... could be that usernames are not correctly mapped in NC and that is an issue? |
could be |
Really weird, an additional message I got now suggests that the user isn't logged in, even though he clearly is when clicking the checkbox:
I highly suspect that this has to do with LDAP and incorrect mapping. I'll setup a fresh Nextcloud and pull users again from LDAP to check. |
Hmm, it wasn't LDAP. I installed Nextcloud fresh and pulled users from LDAP again with the correct UIDs and it still doesn't work. The spinner keeps spinning, a QR code is generated and can be added to Google Authenticator but if I log out or leave the settings page, 2FA remains disabled. When clicking the checkbox, only one request is shown in Web Developer Tools -> Network -> XHR: a POST to https://10.0.81.100:9001/apps/twofactor_totp/settings/enable with the response of:
|
This comment was marked as spam.
This comment was marked as spam.
Hello! |
That could well be. I'm on NC 28 with PHP 8.1 Existing TOTP works. But I disabled it for one user and can't reactivate it now. Any solution in sight? |
I ran into the same problem. There was 5 min difference between my phone time and my server time. whenever I synced my debian server time using NTP, the 2FA start working again with PHP8.2 and Nextcloud 29.0.3. |
System time changes for proper operation of 2FA Two-factor Authentication!!! January 14, 2024, time 19 hours 12 minutes date 202401141912 |
Try changing the system time for 2FA Two-Factor Authentication to work correctly!!! January 14, 2024, time 19 hours 12 minutes date 202401141912 |
Steps to reproduce
Expected behaviour
the QR code should be shown, the spinner should stop quickly
Actual behaviour
the spinner never stops rotating
it is impossible to create backup codes (the spinner here also goes on indefinitely)
It is impossible to log in when supposedly TOTP is active (for this specific user)
Log error:
Server configuration
Operating system:
Web server:
Database:
PHP version:
Version: (see admin page)
Updated from an older version or fresh install:
List of activated apps:
The text was updated successfully, but these errors were encountered: