9 out of 10 times, u2f device is not detected #193
Comments
|
Probably related to #167. Could you open your browser's dev console and check for error messages? That would be helpful. Thanks a lot for reporting this! |
|
I did see some errors. Error: U2F not supported |
This is quite unexpected, especially on Chrome. Do you use any addons/extensions that modify the user agent or similar? |
|
The only addon i use is uBlock. That U2F not supported is intermittent. |
|
Hi guys, Windows 10 - 64 bits - 10.0.15063.1155 |
|
Are you connected via HTTPS all the time? IIRC Chrome denies u2f requests on HTTP connections. |
|
Everything is https. |
|
Okay, thanks for the update. So the error seems to originate from https://github.com/grantila/u2f-api/blob/59662374bb3b47edb50cc6d0d5f78aab6d276d9b/lib/u2f-api.ts#L116. Now, the question is why that condition is met. Either the lib selects the wrong backend (Chrome vs. native) or there is an issue with the u2f implementation in Chrome. One way to debug this would be to fork the u2f api lib, add |
|
Same issue over here. Nextcloud 13.0.6. u2f version 1.55. chrome 68.0.3440.106 How can I see the errors in the dev console of chrome (F12 key)... |
|
I'm having the same issue from Chrome. I just used my Yubikey to authenticate with Github but it's not working in NextCloud. Have tried from Win 10 and Ubuntu. I am using https |
|
do you access the cloud with the same domain every time? |
|
All mobile devices uses one custom domain. But few PC's that never leave the network uses IP addresses. It's also on the Docker behind Apache reverse-proxy (same server). |
|
Okay, I don't know if IP-based U2F is actually allowed. Some browsers might require a domain and HTTPS. That would explain why it works on public services but not on the self-hosted one. If the hostname (domain or IP) is the very same that was used on registration then login should be fine. If you switch from one to the other then it will fail. |
|
What about @basildane and @RedQuarck? Do you still experience this? If not, what was the fix? :) It's been more than a year since your report/comment. |
|
@ChristophWurst what if I did not get to register yet? those errors are on the settings page. The nextcloud (after cicking add key) do not ask browser (no popup) and stops on that error I posted. I moved all the clients to domain login. But I need to register the key first. |
|
Your error might be slightly different to the one originally reported then. For the OP the registration works, but sometimes the login doesn't. Could you please fix your webserver to properly serve .map.js files, reproduce and post the actual stack trace of the error? Hopefully that can give some insights. |
|
I will do this and then create a new bug with better description. |
|
update: I was creating a fresh nextcloud instance on new server and I did those steps:
Now I can use both the code and key (YubiKey) with full success. Tested on mobile (code) and few desktops (key for browser / code for apps). No problem at all. I'm thinking that my "testing" instance was just overheated with ..testing lot of apps/ configurations/etc. |
Steps to reproduce
Expected behaviour
Should authenticate
Actual behaviour
Nothing happens
My client is Chrome 67.
My token is a Yubikey NEO. It works with other applications.
Usually, when I get the "Please plug in your U2F device and press the device button to authorize" prompt, I push the button on my device, and there is no response on the web page. I know the device saw my button press because the light blinks. And again, the token works on other u2f applications.
If I refresh the nextcloud login page over and over, eventually I can get it respond. It's almost like it doesn't have focus or it's not looking for it.
Strangely, sometimes it just works perfectly the first time. I've tried to find a pattern but nothing obvious so far.
Version is 1.5.5.
Nextcloud is 13.0.4.
The text was updated successfully, but these errors were encountered: