mirror of
https://github.com/yusing/godoxy.git
synced 2026-01-14 07:33:36 +01:00
"missing state cookie" error when OIDC is involved #53
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @reddwarf666 on GitHub (Apr 2, 2025).
My setup I think you know but I'll list it so others are aware:
This all seems to work fine on whatever browser I use on my desktop.
Except when I use Firefox and/or Chrome on IOS, then I get a message "missing state cookie".
The procedure is to:
cyberchef.domain.comorit-tools.domain.comfor exampleOut of all the components I use I have. no clue which one is responsible for this, if any at all tbh.
This could be related to the IOS platform or the browsers themselves.
And the odd thing is, if I try Safari on IOS it works as expected, I get to the service(s) just fine
So I realize this might entirely unrelated to Godoxy but I am at my wits end on how to solve this. My only reasoning to make a issue here with Godoxy is that it is one of the components serving the service to the browser(s) so this is my hail mary and see if you or someone else has a clue on what might be wrong and how to fix this.
Looking at the logs of Godoxy is see no record of this request it seems
Looking at the logs of Authentik I see no obvious issues
I transferred the browser page in IOS to my desktop (handover) and I see the it-tools page but with this message:
The URL of that page might give a hint perhaps?
https://it-tools.domain.com/auth/callback?code=[some complex value]&state=[some complex value]
So I am thinking that perhaps the callback is not what it should be?
Any help or insight would be appreciated!
UPDATE: I went to IOS and Firefox and pasted the domain of the service there
so without the
/auth/callback?code=[some complex value]&state=[some complex value]part:https://it-tools.domain.com/
And while it went to Authentik once more, the service the shows as it should be!
@yusing commented on GitHub (Apr 3, 2025):
Maybe privacy settings of your browser is causing the issue. Will investigate in it asap.
@reddwarf666 commented on GitHub (Apr 21, 2025):
Hi There!
Any news on this issue? I could not resolve this on my end and have no clue what is happening.
Cheers
@yusing commented on GitHub (Apr 21, 2025):
Sorry for the late reply. I'll check it now, will reply back within today.
@reddwarf666 commented on GitHub (Apr 21, 2025):
Awesome! Thanks!
@yusing commented on GitHub (Apr 21, 2025):
Please pull again and see if the problem persist. I've just tesed with Chrome on iOS and it works like charm.
@reddwarf666 commented on GitHub (Apr 21, 2025):
I updated my container just now, version 0.10.1
I can get it to work with Safari and Chrome, thanks!
Firefox is still a bit of an issue,
missing state cookiestill show for some reason.I did have to go all out on wiping all Chrome settings before I got rid of that message.
Is there anything you would like to have from me for information to analyze this?
I can imagine you might find this an edge case, just the one browser on a mobile, so if you need to invest your time in other cases or development then I completely understand. All in all I can use this on Safari and Chrome after all.
Just give me a ping on Discord if you do want some more info from me and I'll try to give you any info you might need.
@yusing commented on GitHub (Apr 21, 2025):
No problem. I'll download Firefox now to test it out. Will let you know if there is any info that can help.
@yusing commented on GitHub (Apr 24, 2025):
Closing this issue now. For anyone interested:
The issue is caused when typing the url without https. Since Firefox on iOS doesn't do auto https, the state cookie can't be read due to the
secureflag while having a non-secure connection.