Uploaded image for project: 'Help-Desk'
  1. Help-Desk
  2. HELP-8832

[fiware-stackoverflow] WireCloud login with keystone: AuthStateForbidden at /complete/fiware/

        Details

          Description

          Created question in FIWARE Q/A platform on 16-06-2016 at 08:06
          Please, ANSWER this question AT https://stackoverflow.com/questions/37851763/wirecloud-login-with-keystone-authstateforbidden-at-complete-fiware

          Question:
          WireCloud login with keystone: AuthStateForbidden at /complete/fiware/

          Description:
          When trying to login to WireCloud via Keystone with an user that already has WireCloud authorized the following error is displayed:

          Environment:

          Request Method: GET
          Request URL: http://dashboard.example.com/complete/fiware/?state=pHFsTpzh7lhXKBiqkpZxSYOPpRi5w1ph&code=pxJSjgIqyAVAvHfP8xzFIkAmnCLtx6

          Django Version: 1.9.6
          Python Version: 2.7.9
          Installed Applications:
          ('django.contrib.auth',
          'django.contrib.contenttypes',
          'django.contrib.sessions',
          'django.contrib.messages',
          'django.contrib.staticfiles',
          'django.contrib.admin',
          'wirecloud.commons',
          'compressor',
          'wirecloud.catalogue',
          'wirecloud.platform',
          'wirecloud.oauth2provider',
          'wirecloud.fiware',
          'social.apps.django_app.default')
          Installed Middleware:
          ('wirecloud.commons.middleware.URLMiddleware',)

          Traceback:

          File "/opt/wc/venv/lib/python2.7/site-packages/django/core/handlers/base.py" in get_response
          149. response = self.process_exception_by_middleware(e, request)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/core/handlers/base.py" in get_response
          147. response = wrapped_callback(request, *callback_args, **callback_kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/views/decorators/cache.py" in _wrapped_view_func
          57. response = view_func(request, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/views/decorators/csrf.py" in wrapped_view
          58. return view_func(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/apps/django_app/utils.py" in wrapper
          51. return func(request, backend, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/apps/django_app/views.py" in complete
          28. redirect_name=REDIRECT_FIELD_NAME, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/actions.py" in do_complete
          43. user = backend.complete(user=user, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/base.py" in complete
          41. return self.auth_complete(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/utils.py" in wrapper
          229. return func(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/oauth.py" in auth_complete
          375. state = self.validate_state()

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/oauth.py" in validate_state
          90. raise AuthStateForbidden(self)

          Exception Type: AuthStateForbidden at /complete/fiware/
          Exception Value: Wrong state parameter given.

          When you then try to log into WireCloud again with that user, so that the session from the Keyrock login is still active, it works fine. But why does this error get displayed?

          And even worse: If a new user wants to sign up to WireCloud, after the login to Keystone, this error gets thrown:

          Environment:

          Request Method: GET
          Request URL: http://dashboard.example.com/complete/fiware/?state=4Ccx9THwAxUht3rXi3N3J9du1LTTOmcC&code=mZXx34K8ojV9RJiNiNtUuzc10HtoJU

          Django Version: 1.9.6
          Python Version: 2.7.9
          Installed Applications:
          ('django.contrib.auth',
          'django.contrib.contenttypes',
          'django.contrib.sessions',
          'django.contrib.messages',
          'django.contrib.staticfiles',
          'django.contrib.admin',
          'wirecloud.commons',
          'compressor',
          'wirecloud.catalogue',
          'wirecloud.platform',
          'wirecloud.oauth2provider',
          'wirecloud.fiware',
          'social.apps.django_app.default')
          Installed Middleware:
          ('wirecloud.commons.middleware.URLMiddleware',)

          Traceback:

          File "/opt/wc/venv/lib/python2.7/site-packages/django/core/handlers/base.py" in get_response
          149. response = self.process_exception_by_middleware(e, request)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/core/handlers/base.py" in get_response
          147. response = wrapped_callback(request, *callback_args, **callback_kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/views/decorators/cache.py" in _wrapped_view_func
          57. response = view_func(request, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/views/decorators/csrf.py" in wrapped_view
          58. return view_func(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/apps/django_app/utils.py" in wrapper
          51. return func(request, backend, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/apps/django_app/views.py" in complete
          28. redirect_name=REDIRECT_FIELD_NAME, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/actions.py" in do_complete
          43. user = backend.complete(user=user, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/base.py" in complete
          41. return self.auth_complete(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/utils.py" in wrapper
          229. return func(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/oauth.py" in auth_complete
          387. *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/utils.py" in wrapper
          229. return func(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/oauth.py" in do_auth
          398. return self.strategy.authenticate(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/strategies/django_strategy.py" in authenticate
          96. return authenticate(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/contrib/auth/_init_.py" in authenticate
          74. user = backend.authenticate(**credentials)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/base.py" in authenticate
          82. return self.pipeline(pipeline, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/base.py" in pipeline
          85. out = self.run_pipeline(pipeline, pipeline_index, *args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/backends/base.py" in run_pipeline
          112. result = func(*args, **out) or {}

          File "/opt/wc/venv/lib/python2.7/site-packages/social/pipeline/user.py" in create_user
          69. 'user': strategy.create_user(**fields)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/strategies/base.py" in create_user
          53. return self.storage.user.create_user(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/social/storage/django_orm.py" in create_user
          60. return cls.user_model().objects.create_user(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/contrib/auth/models.py" in create_user
          154. return self._create_user(username, email, password, **extra_fields)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/contrib/auth/models.py" in _create_user
          148. user.save(using=self._db)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/contrib/auth/base_user.py" in save
          74. super(AbstractBaseUser, self).save(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/models/base.py" in save
          708. force_update=force_update, update_fields=update_fields)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/models/base.py" in save_base
          736. updated = self._save_table(raw, cls, force_insert, force_update, using, update_fields)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/models/base.py" in _save_table
          820. result = self._do_insert(cls._base_manager, using, fields, update_pk, raw)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/models/base.py" in _do_insert
          859. using=using, raw=raw)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/models/manager.py" in manager_method
          122. return getattr(self.get_queryset(), name)(*args, **kwargs)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/models/query.py" in _insert
          1039. return query.get_compiler(using=using).execute_sql(return_id)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/models/sql/compiler.py" in execute_sql
          1060. cursor.execute(sql, params)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/backends/utils.py" in execute
          79. return super(CursorDebugWrapper, self).execute(sql, params)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/backends/utils.py" in execute
          64. return self.cursor.execute(sql, params)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/utils.py" in _exit_
          95. six.reraise(dj_exc_type, dj_exc_value, traceback)

          File "/opt/wc/venv/lib/python2.7/site-packages/django/db/backends/utils.py" in execute
          64. return self.cursor.execute(sql, params)

          Exception Type: IntegrityError at /complete/fiware/
          Exception Value: FEHLER: NULL-Wert in Spalte „last_login“ verletzt Not-Null-Constraint
          DETAIL: Fehlgeschlagene Zeile enthält (21, !mtZhl9gusVEPg4QTz80CbnY61pc7SxUF73AvtPu7, null, f, bi-demo, , , bi-demo@example.com, f, t, 2016-06-16 06:40:19.588666+00).

          This indicates that some postgres constraints may be violated (we use postgres as db for WireCloud). It happens when an user that has not yet authorized WireCloud but is logged in to keystone tries to access WireCloud. Usually then the authorize page should get displayed but instead the error is thrown and the user is not created in the WireCloud Django admin panel.

            Activity

            Ascending order - Click to sort in descending order
            backlogmanager Backlog Manager created issue -
            Hide
            Permalink
            backlogmanager Backlog Manager added a comment -

            2017-05-22 15:08|CREATED monitor | # answers= 1, accepted answer= False

            Show
            backlogmanager Backlog Manager added a comment - 2017-05-22 15:08|CREATED monitor | # answers= 1, accepted answer= False
            backlogmanager Backlog Manager made changes -
            Field Original Value New Value
            Component/s FIWARE-TECH-HELP [ 10278 ]
            backlogmanager Backlog Manager made changes -
            Status Open [ 1 ] In Progress [ 3 ]
            Hide
            Permalink
            backlogmanager Backlog Manager added a comment -

            2017-05-22 18:06|UPDATED status: transition Answer| # answers= 1, accepted answer= False

            Show
            backlogmanager Backlog Manager added a comment - 2017-05-22 18:06|UPDATED status: transition Answer| # answers= 1, accepted answer= False
            backlogmanager Backlog Manager made changes -
            Status In Progress [ 3 ] Answered [ 10104 ]
            Hide
            Permalink
            backlogmanager Backlog Manager added a comment -

            2017-05-22 21:06|UPDATED status: transition Answered| # answers= 1, accepted answer= False

            Show
            backlogmanager Backlog Manager added a comment - 2017-05-22 21:06|UPDATED status: transition Answered| # answers= 1, accepted answer= False
            jicg José Ignacio Carretero Guarde made changes -
            Assignee Álvaro Arranz [ aarranz ]
            jicg José Ignacio Carretero Guarde made changes -
            Resolution Done [ 10000 ]
            Status Answered [ 10104 ] Closed [ 6 ]
            fla Fernando Lopez made changes -
            HD-Enabler Wirecloud [ 10857 ]
            HD-Chapter Apps [ 10836 ]
            fla Fernando Lopez made changes -
            Fix Version/s 2021 [ 12600 ]
            Transition Time In Source Status Execution Times Last Executer Last Execution Date
            Open Open In Progress In Progress
            		2h 57m 1 Backlog Manager 22/May/17 6:05 PM
            In Progress In Progress Answered Answered
            		2h 59m 1 Backlog Manager 22/May/17 9:05 PM
            Answered Answered Closed Closed
            		6d 14h 59m 1 José Ignacio Carretero Guarde 29/May/17 12:05 PM

              People

              • Assignee:
                aarranz Álvaro Arranz
                Reporter:
                backlogmanager Backlog Manager
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: