vikunja
/
vikunja
6
43
Fork 69
Code Issues 152 Pull Requests 10 Packages Releases 32 Activity

login endpoint returns 412 error code even if totp is disabled #1518

New Issue
Closed
opened 2023-05-10 20:06:27 +00:00 by benimautner · 4 comments
benimautner commented 2023-05-10 20:06:27 +00:00
Copy Link

Description

/login returns http status code 412 when username or password is wrong, which, according to the docs, is reserved for missing or invalid totp code.

Vikunja Frontend Version

v0.20.5

Vikunja API Version

v0.20.4

Browser and version

No response

Can you reproduce the bug on the Vikunja demo site?

Yes

Screenshots

No response

### Description /login returns http status code 412 when username or password is wrong, which, according to the docs, is reserved for missing or invalid totp code. ### Vikunja Frontend Version v0.20.5 ### Vikunja API Version v0.20.4 ### Browser and version _No response_ ### Can you reproduce the bug on the Vikunja demo site? Yes ### Screenshots _No response_
image.png
7.3 KiB
image.png
benimautner added the
kind/bug
 label 2023-05-10 20:06:27 +00:00
konrad commented 2023-05-10 20:09:59 +00:00
Owner
Copy Link

You mean the status code? That can be a few different errors. You should check Vikunja's error code: https://vikunja.io/docs/errors/#user

For wrong username or password that's 1011, for an invalid totp code that's 1017.

You mean the status code? That can be a few different errors. You should check Vikunja's error code: https://vikunja.io/docs/errors/#user For wrong username or password that's 1011, for an invalid totp code that's 1017.
benimautner commented 2023-05-10 20:47:07 +00:00
Author
Copy Link

I was talking about the http response code, which, according to the docs, should be 403 for wrong username or password instead of 412.
I am using the ErrorCode now. I was just confused because the api docs say something different.
https://try.vikunja.io/api/v1/docs#tag/user/paths/~1login/post

I was talking about the http response code, which, according to the docs, should be 403 for wrong username or password instead of 412. I am using the ErrorCode now. I was just confused because the api docs say something different. https://try.vikunja.io/api/v1/docs#tag/user/paths/~1login/post
konrad commented 2023-05-11 11:03:02 +00:00
Owner
Copy Link

Yeah the docs need an update.

Yeah the docs need an update.
konrad commented 2023-05-11 20:26:40 +00:00
Owner
Copy Link

Turns out swagger (or the lib we're using to generate swagger docs) only allows one response per http status code. That kind of prevents us from using multiple responses. I'll add a note to the docs.

Turns out swagger (or the lib we're using to generate swagger docs) only allows one response per http status code. That kind of prevents us from using multiple responses. I'll add a note to the docs.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
renovate/lowlight-3.x
renovate/golang.org-x-sync-0.x
renovate/major-dev-dependencies
renovate/github.com-asaskevich-govalidator-11.x
renovate/github.com-wneessen-go-mail-0.x
renovate/golangci-golangci-lint-1.x
feature/better-filter-syntax
fix/tiptap-task-list
renovate/flexsearch-0.x
feature/zod-schema
renovate/github.com-typesense-typesense-go-1.x
renovate/github.com-golang-jwt-jwt-v4-5.x
automatic-year-range-for-go-header-template
feature/hide-forbidden-related-tasks
renovate/golang-1.x
release/0.20
release/0.17
release/0.16
release/0.15
release/0.14
release/0.13
v0.23.0
v0.22.1
v0.22.0
v0.21.0
v0.20.4
v0.20.3
v0.20.2
v0.20.1
v0.20.0
v0.19.2
v0.19.1
v0.19.0
v0.18.1
v0.18.0
v0.17.1
v0.17.0
v0.16.1
v0.16.0
v0.15.1
v0.15.0
v0.14.1
v0.14.0
v0.13.1
v0.13
v0.12
v0.11
v0.10
v0.9
v0.8
v0.7
v0.6
v0.5
v0.4
v0.3
v0.2
v0.1
Labels
Clear labels   
dependencies

   
duplicate

This issue or pull request already exists

  
help wanted

Need some help

  
invalid

Something is wrong

  
kind/bug

Something is not working

  
kind/feature

New feature

  
needs reproduction

   
question

More information is needed

  
security

   
wontfix

This won't be fixed

No Label
dependencies
duplicate
help wanted
invalid
kind/bug
kind/feature
needs reproduction
question
security
wontfix
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: vikunja/vikunja#1518
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?