Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Access token renewal fails in web ui #9163

Closed
kulmann opened this issue May 14, 2024 · 4 comments · Fixed by #9167
Closed

Access token renewal fails in web ui #9163

kulmann opened this issue May 14, 2024 · 4 comments · Fixed by #9167
Assignees
@DeepDiver1975
Labels
Priority:p2-high Escalation, on top of current planning, release blocker Type:Bug

Comments

@kulmann
Copy link
Member

kulmann commented May 14, 2024
edited

Describe the bug

Access token renewal in the web ui fails.

Steps to reproduce

  1. Log in to https://ocis.ocis-wopi.latest.owncloud.works/ with admin:admin
  2. Wait for the access token expiry

Expected behavior

Access token renewal happens.

Actual behavior

Access token renewal fails with error message Refused to frame 'https://ocis.ocis-wopi.latest.owncloud.works/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".

Additional context

Happens in current master. Might be fallout from #8777

Preserve logs must be active in the browser dev tools to observe the error message.
@kulmann kulmann added Type:Bug Priority:p2-high Escalation, on top of current planning, release blocker labels May 14, 2024
@micbar
Copy link
Contributor

micbar commented May 14, 2024

@DeepDiver1975 Can you please take a look? That seems related to your changes.

@DeepDiver1975 DeepDiver1975 self-assigned this May 14, 2024
@DeepDiver1975
Copy link
Member

DeepDiver1975 commented May 14, 2024
edited

On FF - unrelated but also worth a look ....
image

@DeepDiver1975
Copy link
Member

Access token renewal fails with error message Refused to frame 'https://ocis.ocis-wopi.latest.owncloud.works/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".

Why (aka who) is trying to load ocis in an iframe? oidc client?

@kulmann
Copy link
Member Author

kulmann commented May 14, 2024

Access token renewal fails with error message Refused to frame 'https://ocis.ocis-wopi.latest.owncloud.works/' because an ancestor violates the following Content Security Policy directive: "frame-ancestors 'none'".

Why (aka who) is trying to load ocis in an iframe? oidc client?

Yes, oidc-client-ts does this as part of the silent token renewal.

@DeepDiver1975 DeepDiver1975 mentioned this issue May 14, 2024
Merged
9 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@DeepDiver1975 DeepDiver1975

Labels
Priority:p2-high Escalation, on top of current planning, release blocker Type:Bug
Projects
Infinite Scale Team Board
Status: Done
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix: token refresh in single binary and wopi deployment example owncloud/ocis
3 participants
@DeepDiver1975 @kulmann @micbar