[Adding new domain] Old accounts cannot log in to Yunohost user form from new domain

tuxmouraille · March 22, 2025, 10:27am

What type of hardware are you using: Old laptop or computer
What YunoHost version are you running: 12.0.12
How are you able to access your server: The webadmin
SSH
Direct access via physical keyboard/screen
Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: I had a new domain. J’ai ajouté un nouveau domaine.

Describe your issue

Hello,

My Yunohost server has been using only one domain for many years: domain1.tld.
Yesterday, I added a new domain: domain2.tld.
No accounts that existed before the new domain can log in to the user form from the new domain at https://domain2.tld/yunohost/sso/login, but new ones can.
However, old accounts can use email addresses with the new domain, for example, johndoe@domain2.tld.
I think I should update the old account information in the LDAP server, but I can’t find the command to do so. I’ve already restarted the server just in case.

##############################
Bonjour,

Mon serveur Yunohost n’utilisait qu’un seul domaine depuis de nombreuses années : domain1.tld.
Hier, j’y ai ajouté un nouveau domaine : domain2.tld.
Aucun comptes qui existaient avant le nouveau domaine ne peuvent se connecter au formulaire utilisateur depuis le nouveau domaine à l’adresse https://domain2.tld/yunohost/sso/login mais les nouveaux, oui.
Cependant, les anciens comptes peuvent utiliser des adresses emails avec le nouveau domain, for exemple jeanmartin@domain2.tld.
Je pense qu’il faudrait mettre mettre à jour les informations des anciens comptes dans le serveur LDAP mais je ne trouve pas la commande pour le faire. J’ai déjà redémarré le serveur au cas où.

Share relevant logs or error messages

The form says for the user field “Le nom du compte n’est probablement pas valide” and for the password field “Le mot de passe est potentiellement invalide”.

################
Le formulaire dit pour le champ utilisateur “Le nom du compte n’est probablement pas valide” et pour le mot de passe “Le mot de passe est potentiellement invalide”.

tuxmouraille · March 22, 2025, 11:22am

I tried to regen the SSO conf

22/03/2025 12:17:56 $ sudo yunohost tools regen-conf ssowat -f
Info : L'opération 'Régénérer les configurations du système 'ssowat'' a échoué ! Pour obtenir de l'aide, merci de partager le journal de l'opération en utilisant la commande 'yunohost log share 20250322-112015-regen_conf-ssowat'
Erreur : Impossible de régénérer la configuration pour la ou les catégorie(s) : ''

Here the log : https://paste.yunohost.org/raw/opegayulor

ljf · March 22, 2025, 9:26pm

I think, only users with a mail or an alias with @domain2.tld can login on it.

tuxmouraille · March 23, 2025, 11:54am

Hello,

I have two email alias with domain2.tld to my account and I can’t connect to Yunohost from domain2.tld, even if my main email is on domain2.tld
The new account I created after I add my new domain was with a main email on domain2.tld. It doesn’t have email alias on domain1.tld but can connect to Yunohost from both domains.
Then, thanks @ljf for the idea, I just created a new account with a main email on domain1.tld and an email alias on domain2.tld. It can connect to Yunohost from domain1.tld but not from domain2.tld.

domain1.tld is my main domain and I want to migrate my server from domain1.tld to domain2.tld.

My last idea is to change my main domain, but I can’t because I not the only user.

tuxmouraille · March 24, 2025, 8:27pm

Hello,

I just added my first application on domain2.tld and I can now connect to Yunohost with my old account via domain2.tld.
I think there’s a bug, but it’s no longer a problem for me. I’m closing this issue.

Aleks · March 24, 2025, 9:51pm

Admins are allowed to login on all domains

(Edit: ah is misread, thought you meant you could but you actually wrote that you “can’t” )