-
Bug
-
Resolution: Done
-
Major
-
None
-
Unspecified
Description
unable to login as django_auth users via the UI /ui/login/
- entering credentials and pressing login results in 204 response from GET /api/_ui/v1/auth/login/, then 403 response from POST /api/_ui/v1/auth/login/
2023-07-13 12:28:26,309 INFO gunicorn.access: 10.128.20.71 - - [13/Jul/2023:12:28:26 +0000] "GET /api/_ui/v1/auth/login/ HTTP/1.0" 204 0 "https://beta-galaxy-dev.ansible.com/ui/login/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36" 2023-07-13 12:28:26,347 WARNING django.request: Forbidden: /api/_ui/v1/auth/login/ 2023-07-13 12:28:26,348 INFO gunicorn.access: 10.128.20.71 - - [13/Jul/2023:12:28:26 +0000] "POST /api/_ui/v1/auth/login/ HTTP/1.0" 403 238 "https://beta-galaxy-dev.ansible.com/ui/login/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36
unable to to logout as any user via the UI
- clicking `Logout` results in 403 response from POST /api/_ui/v1/auth/logout/
2023-07-13 12:33:17,431 WARNING django.request: Forbidden: /api/_ui/v1/auth/logout/ 2023-07-13 12:33:17,431 INFO gunicorn.access: 10.128.23.86 - - [13/Jul/2023:12:33:17 +0000] "POST /api/_ui/v1/auth/logout/ HTTP/1.0" 403 240 "https://beta-galaxy-stage.ansible.com/ui/token/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36"
unable to load token when signed in as any user
- clicking `Load Token` from /ui/token/ results in 403 error from POST /api/v3/auth/token/
2023-07-13 12:35:45,399 WARNING django.request: Forbidden: /api/v3/auth/token/ 2023-07-13 12:35:45,400 INFO gunicorn.access: 10.128.23.86 - - [13/Jul/2023:12:35:45 +0000] "POST /api/v3/auth/token/ HTTP/1.0" 403 240 "https://beta-galaxy-stage.ansible.com/ui/token/" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/115.0.0.0 Safari/537.36"
NOTE:
Logging in as a github/social_auth user is successful.
Existing tokens (for both social_auth and django_auth users) are still functional
Key Dependency Versions
It occurred between commits 059ae11 (23May) and aefc6af (11July)
https://github.com/ansible/galaxy_ng/compare/059ae11...aefc6afb
Steps to Reproduce
See description
Actual Behavior
See description
Expected Behavior
Users should be able to login, logout, and display their tokens