Details
-
Type:
Story
-
Status: Done
-
Resolution: Done
-
Fix Version/s: None
-
Component/s: squash
-
Labels:None
-
Story Points:1.4
-
Epic Link:
-
Team:SQuaRE
Description
Krzysztof Findeisen is logging in to Chronograf GitHub OAuth works and he's associated to the Chronograf LSST DM org and is granted with editor role.
time="2019-02-01T19:48:58Z" level=info msg="User kfindeis@uw.edu is authenticated" component=auth method=GET remote_addr="10.60.0.12:37776" url=/oauth/github/callback?code=f1de8234cd183e962f0c&state=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE1NDkwNTExMzAsImlhdCI6MTU0OTA1MDUzMCwibmJmIjoxNTQ5MDUwNTMwLCJzdWIiOiJmVkdhWUk3N0xTUXMzR0VrNUZMYjJ0RE5aQytxbmVhUXJIZ2RHTzhlZjZjPSJ9.S6W1aDpL48VPEGo88UbEceqd8uq1PbTu962AmdsGxc4
|
|
But apparently has no authorization to access the dashboards:
time="2019-02-01T19:54:32Z" level=error msg="Invalid principal" component="token_auth" method=GET remote_addr="10.60.0.12:38214" url=/chronograf/v1/dashboards/8
|
I have tried with three other users and could not reproduce this error.
The Javascript console shows the following error:
GET XHR [https://chronograf-demo.lsst.codes/chronograf/v1/dashboards/8] [HTTP/2.0 403 Forbidden 78ms]
|
Response
|
X-Firefox-Spdy h2
|
content-length 0
|
date Fri, 01 Feb 2019 21:57:16 GMT
|
server nginx/1.15.5strict-transport-securitymax-age=15724800; includeSubDomains
|
x-chronograf-version 1.7.0
|
Request
|
Accept */*
|
Accept-Encoding gzip, deflate, br
|
Accept-Language en-US,en;q=0.5
|
Connection keep-alive
|
DNT 1
|
Host chronograf-demo.lsst.codes
|
Referer [https://chronograf-demo.lsst.codes/worker.74d33209.js]
|
User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:56.0; Waterfox) Gecko/20100101 Firefox/56.2.7
|
origin [https://chronograf-demo.lsst.codes|https://chronograf-demo.lsst.codes/]
|
POST XHR [https://chronograf-demo.lsst.codes/chronograf/v1/sources/2/proxy] [HTTP/2.0 403 Forbidden 62ms]Headers
|
POST
|
Response
|
X-Firefox-Spdy h2
|
content-length 0
|
date Fri, 01 Feb 2019 21:57:16 GMT
|
server nginx/1.15.5
|
strict-transport-security max-age=15724800; includeSubDomains
|
x-chronograf-version 1.7.0
|
Request
|
Accept */*
|
Accept-Encoding gzip, deflate, br
|
Accept-Language en-US,en;q=0.5
|
Connection keep-alive
|
Content-Length 214
|
DNT 1
|
Host chronograf-demo.lsst.codes
|
Referer [https://chronograf-demo.lsst.codes/worker.74d33209.js]
|
User-Agent Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:56.0; Waterfox) Gecko/20100101 Firefox/56.2.7
|
content-type text/plain;charset=UTF-8
|
origin [https://chronograf-demo.lsst.codes|https://chronograf-demo.lsst.codes/]
|
SyntaxError: JSON.parse: unexpected end of data at line 1 column 1 of the JSON data src.8fa04a7e.js:1540:810
|
t/< [https://chronograf-demo.lsst.codes/src.8fa04a7e.js:1540:810]
|
L [https://chronograf-demo.lsst.codes/src.8fa04a7e.js:5:4399]
|
w/i._invoke</< [https://chronograf-demo.lsst.codes/src.8fa04a7e.js:5:4189]
|
_/</t[r] [https://chronograf-demo.lsst.codes/src.8fa04a7e.js:5:4575]
|
c [https://chronograf-demo.lsst.codes/src.8fa04a7e.js:1540:348]
|
c [https://chronograf-demo.lsst.codes/src.8fa04a7e.js:466:1110]
|
R/< [https://chronograf-demo.lsst.codes/src.8fa04a7e.js:466:1255]
|
v [https://chronograf-demo.lsst.codes/src.8fa04a7e.js:451:269]
|
|
Attachments
Activity
This one can be closed. It looks like a problem in a particular combination of OS+Browser and was not observed anymore.
I have reported the error for the Chronograf developers as well:
https://github.com/influxdata/chronograf/issues/5064