Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Incorrect OAuth2 ID/Secret leads 500 / incorrect error message #23936

Closed
wxiaoguang opened this issue Apr 5, 2023 · 0 comments · Fixed by #25261
Closed

Incorrect OAuth2 ID/Secret leads 500 / incorrect error message #23936

wxiaoguang opened this issue Apr 5, 2023 · 0 comments · Fixed by #25261
Labels
type/bug

Comments

@wxiaoguang
Copy link
Contributor

wxiaoguang commented Apr 5, 2023
edited
Loading

Description

Many users reported this problem: when they try to use OAuth2 as auth source, they see 500 errors, and an unclear error message in log:

/auth/oauth.go:920:SignInOAuthCallback() [E] [642b21e7-2] UserSignIn: oauth2: server response missing access_token

The problem is that:

  1. If the user double-click and copy the secret from GitHub app page, there will be an extra space in the Client Secret field.
  2. The incorrect Client Secret makes the auth failed. GitHub returns clear message
  3. However, the goth package doesn't respect the error message, it only returns an error "server response missing access_token"
  4. If the callback URL is incorrect, some 500 error might also happen.

To fix the problem:

  1. Trim spaces.
  2. Fix goth package, make it respect the returned error message.
  3. Make Gitea show more details if goth returns unclear messages, at least it helps users.
@wxiaoguang wxiaoguang mentioned this issue Apr 26, 2023
Closed
@wxiaoguang wxiaoguang mentioned this issue Jun 14, 2023
Merged
lunny pushed a commit that referenced this issue Jun 15, 2023
@wxiaoguang
Show OAuth2 errors to end users (#25261)
73ae718 
Partially fix #23936


![image](https://github.com/go-gitea/gitea/assets/2114189/8aa7f3ad-a5f0-42ce-a478-289a03bd08a3)


![image](https://github.com/go-gitea/gitea/assets/2114189/bb901e7d-485a-47a5-b68d-9ebe7013a6b2)


![image](https://github.com/go-gitea/gitea/assets/2114189/9a1ce0f3-f011-4baf-8e2f-cc6304bc9703)
@GiteaBot GiteaBot mentioned this issue Jun 15, 2023
Merged
GiteaBot pushed a commit to GiteaBot/gitea that referenced this issue Jun 15, 2023
@wxiaoguang @GiteaBot
Show OAuth2 errors to end users (go-gitea#25261)
720a5ed 
Partially fix go-gitea#23936


![image](https://github.com/go-gitea/gitea/assets/2114189/8aa7f3ad-a5f0-42ce-a478-289a03bd08a3)


![image](https://github.com/go-gitea/gitea/assets/2114189/bb901e7d-485a-47a5-b68d-9ebe7013a6b2)


![image](https://github.com/go-gitea/gitea/assets/2114189/9a1ce0f3-f011-4baf-8e2f-cc6304bc9703)
silverwind pushed a commit that referenced this issue Jun 15, 2023
@GiteaBot @wxiaoguang
Show OAuth2 errors to end users (#25261) (#25271)
b45ea02 
Backport #25261 by @wxiaoguang

Partially fix #23936


![image](https://github.com/go-gitea/gitea/assets/2114189/8aa7f3ad-a5f0-42ce-a478-289a03bd08a3)


![image](https://github.com/go-gitea/gitea/assets/2114189/bb901e7d-485a-47a5-b68d-9ebe7013a6b2)


![image](https://github.com/go-gitea/gitea/assets/2114189/9a1ce0f3-f011-4baf-8e2f-cc6304bc9703)

Co-authored-by: wxiaoguang <wxiaoguang@gmail.com>
@github-actions github-actions bot locked as resolved and limited conversation to collaborators Jul 31, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
type/bug
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Show OAuth2 errors to end users wxiaoguang/gitea
1 participant
@wxiaoguang