Skip to content

Gitlab OAUTH Failure #14307

Closed
#14379
Closed
Gitlab OAUTH Failure#14307
#14379
@h4wkmoon

Description

@h4wkmoon
h4wkmoon
opened on Apr 29, 2019

Description:

Version : 1.0.1
Docker image.
Fresh install
I've set up oauth2 with Gitlab (Gitlab is identity provider), like I always do in rocketchat. No change on gitlab side.
When users try to login with gitlab in RC, they receive an error message 500.
RC logs indicate a "401 Unauthorized" error from gitlab.
Gitlab indicates no error except the attempt to access the v3 api.

Steps to reproduce:

  1. Install Rocket CHAT
  2. Set up GITLAB Oauth2
  3. Try to log using gitlab

Expected behavior:

Login success when provided a correct user.password in gitlab popup

Actual behavior:

Error 500

Server Setup Information:

  • Version of Rocket.Chat Server: 1.0.2
  • Operating System: The one from the official docker image.
  • Deployment Method: Docker
  • Number of Running Instances: 1
  • DB Replicaset Oplog: Yes, as it is mandatory now.
  • NodeJS Version: The one from the official docker image.
  • MongoDB Version: 3.6

Additional context

I worked perfectly in 0.73

Relevant logs:

{"line":"392","file":"oauth_server.js","message":"Error in OAuth Server: Failed to fetch identity from gitlab at http://*********************/api/v3/user . failed [401] {\"message\":\"401 Unauthorized\"}","time":{"$date":1556546048886},"level":"warn"}
--
  | Exception while invoking method 'login' { Error: Failed to fetch identity from gitlab at http://l***************************/api/v3/user . failed [401] {"message":"401 Unauthorized"}
  | at CustomOAuth.getIdentity (app/custom-oauth/server/custom_oauth_server.js:178:18)
  | at Object.OAuth.registerService.query [as handleOauthRequest] (app/custom-oauth/server/custom_oauth_server.js:188:26)
  | at OAuth._requestHandlers.(anonymous function) (packages/oauth2/oauth2_server.js:10:33)
  | at middleware (packages/oauth/oauth_server.js:161:5)
  | at /app/bundle/programs/server/npm/node_modules/meteor/promise/node_modules/meteor-promise/fiber_pool.js:43:40
  | message: 'Failed to fetch identity from gitlab at http://******************************/api/v3/user . failed [401] {"message":"401 Unauthorized"}',
  | response:
  | { statusCode: 401,
  | content: '{"message":"401 Unauthorized"}',
  | headers:
  | { server: 'nginx',
  | date: 'Mon, 29 Apr 2019 13:54:08 GMT',
  | 'content-type': 'application/json',
  | 'content-length': '30',
  | connection: 'close',
  | 'cache-control': 'no-cache',
  | vary: 'Origin',
  | 'x-content-type-options': 'nosniff',
  | 'x-frame-options': 'SAMEORIGIN',
  | 'x-request-id': '**********************************',
  | 'x-runtime': '0.008920' },
  | data: { message: '401 Unauthorized' } } }

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions