What type of hardware are you using: Internet Cube with VPN
What YunoHost version are you running: 12.0.11
How are you able to access your server: The webadmin
SSH
Direct access via physical keyboard/screen
Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: /
Describe your issue
English:
Hello everyone!
The main objective was to change the password for Myuser with new-password
I did that through the webadmin interface (with Myuser logged in) in Users>Myuser>Edit Myuser account> password and confirm
Note : Myuser is in the admin group
After that done, several unexpected things happened:
- Connected with SSH (keys) with my Myuser, impossible to use sudo or the new-password (failed and emailed root that it failed)
- Same situation as above, with old-password: incorrect password
- Connection with serial directly on the board: Impossible to login with Myuser (still able to use root if needed)
- Login in the User portal with Myuser new-password: 504 error.
- Login in webadmin with Myuser: OK! but first time that the message âWaiting for the server responseâŠâ appears on webadmin login in my yunohost experience
- All the api connections (calendars baikal, email, xmpp, ⊠) are working with new-password
- Changing the password again is giving same issues as above
Workaround solution on User portal: Increase timeout in nginx for the 504, but itâs not de root of the issue I believe.
Where to look (from my limited expertise):
- slapd/ LDAP doesnât set the system password correctly⊠hash not ok/different in pwd?
- Changing the password of Myuser through the webadmin while having the Myuser connected creates conflict?
- Try to change the password in the system/linux where it seem different than the rest? knowing all the apps are working besides the linux user.
- Is there a link between the password (length? special characters?..) and the different places it has to be set?
French:
Bonjour a tous!
Le principal objectif a atteindre ici etait de changer le mot de passe pour Myuser par nouveau-mdp
Jâai fait ca en utilisant lâinterface webadmin du site (avec Myuser connecte) en allant dans Users>Myuser>Edit Myuser account> password and confirm
Note: Myuser fait partie du group admin.
Apres avoir fait cela, il y a eu plusieur chose qui ne sont pas normales:
- Etant connecte en ssh (par clefs) avec Myuser, il est impossible dâutiliser lâelevation de droit avec nouveau-mdp (sudo) - password errone et petit message enervant de root qui est pas content
- Meme situation en essaynt de se connecter avec ancien-mdp: password incorrect
- En se connectant sur le serial de la board: impossible de se login avec Myuser nouveau-mdp (mais jâai toujous root si jamais)
- Test de se connecter avec Myuser sur le portail yunohost : El famoso â504â
- Test de se connecter sur le webadmin avec Myuser nouveau-mdp: OK! mais premiere fois que la page dit quâil faut attendre le server au login webadmin âWaiting for the server responseâŠâ
- Toutes les connections indirecte au portail (calendrier baikal, email, xmppâŠ) ca fonctionne.
- Changer le mot-de-passe a nouveau donne les memes resultat.
La solution derivee qui aide pour se connecter au portail: augmenter le timeout sur la conf nginx, mais câest pas ca le souci a mon avis.
La ou je pense quâil faut investiger (avec mon expertise limite):
- slapd/ldap qui nâas pas cascade le nouveau-mdp correctement⊠le hash est pas correct/different pour pwd?
- Le changement du mdp de Myuser PAR Myuser en tant quâadmin a mis une sorte de conflit?
- Essayer de changer le mot de passe cote systeme? Pour finaliser le changement completement? (sachant que tout le reste est content)
- Il y a-t-il un lien entre le mot de passe (longeur? Charactere?..) et les different endroit ou il dois etre mis a jour?
This is all connected to previous issues in this forum, not sure that others said they could not use their password in consoleâŠ
/
Tout ca est connecte au posts precedant dans le forum, pas sur que les autre ai dis quâil nâarrivait plus se connecter en console.
https://forum.yunohost.org/t/erreur-504-via-yunohost-sso-portalapi-debian-bookworm-suite/34553/3
Share relevant logs or error messages
$ sudo yunohost tools regen-conf slapd --with-diff --force
[sudo] password for Myuser: new-password typed
Sorry, try again.
[POST] âhttps://mydomain.web/yunohost/portalapi/loginâ: 504
[error] 1364#1364: *12029 upstream timed out (110: Connection timed out) while reading response header from upstream, client: 10.0.242.11, server: mydomain.web, request: âPOST /yunohost/portalapi/login HTTP/2.0â, upstream: âhttp://127.0.0.1:6788/loginâ, host: âmydomain.webâ, referrer: âhttps://mydomain.web/yunohost/sso/login?(....)â
Edit: realized I was rude and didnât say Hi, sorry / Je mâen veu, je nâavais pas dis bonjour dans mon post, dĂ©solĂ©