OAuth错误 - 无法确定此错误的确切原因

支持
1

我们遇到了这个 OAuth 错误,刷新页面后就好了……我检查了错误日志,以下是详细信息:

The image is a screenshot of an error message from a discussion forum, indicating that the software powering the forum encountered an unexpected problem and asking for further information if the issue persists. (Captioned by AI)
The image is a screenshot of an error message from a discussion forum, indicating that the software powering the forum encountered an unexpected problem and asking for further information if the issue persists. (Captioned by AI)1041×138 68.7 KB

Faraday::TimeoutError (Timeout::Error)

我收到了以下堆栈跟踪日志错误:

activesupport-7.2.2/lib/active_support/broadcast_logger.rb:130:in `block in warn'
activesupport-7.2.2/lib/active_support/broadcast_logger.rb:231:in `block in dispatch'
activesupport-7.2.2/lib/active_support/broadcast_logger.rb:231:in `each'
activesupport-7.2.2/lib/active_support/broadcast_logger.rb:231:in `dispatch'
activesupport-7.2.2/lib/active_support/broadcast_logger.rb:130:in `warn'
/usr/local/lib/ruby/3.3.0/forwardable.rb:240:in `warn'
/var/www/discourse/plugins/discourse-oauth2-basic/lib/oauth2_faraday_formatter.rb:7:in `request'
faraday-2.12.1/lib/faraday/response/logger.rb:22:in `call'
faraday-2.12.1/lib/faraday/rack_builder.rb:152:in `build_response'
faraday-2.12.1/lib/faraday/connection.rb:452:in `run_request'
oauth2-1.4.11/lib/oauth2/client.rb:107:in `request'
oauth2-1.4.11/lib/oauth2/client.rb:177:in `get_token'
oauth2-1.4.11/lib/oauth2/strategy/auth_code.rb:32:in `get_token'
omniauth-oauth2-1.7.3/lib/omniauth/strategies/oauth2.rb:126:in `build_access_token'
omniauth-oauth2-1.7.3/lib/omniauth/strategies/oauth2.rb:91:in `callback_phase'
omniauth-1.9.2/lib/omniauth/strategy.rb:238:in `callback_call'
omniauth-1.9.2/lib/omniauth/strategy.rb:189:in `call!'
omniauth-1.9.2/lib/omniauth/strategy.rb:169:in `call'
omniauth-1.9.2/lib/omniauth/builder.rb:45:in `call'
/var/www/discourse/lib/middleware/omniauth_bypass_middleware.rb:43:in `call'
rack-2.2.10/lib/rack/tempfile_reaper.rb:15:in `call'
rack-2.2.10/lib/rack/conditional_get.rb:27:in `call'
rack-2.2.10/lib/rack/head.rb:12:in `call'
actionpack-7.2.2/lib/action_dispatch/http/permissions_policy.rb:38:in `call'
/var/www/discourse/lib/content_security_policy/middleware.rb:12:in `call'
/var/www/discourse/lib/middleware/anonymous_cache.rb:397:in `call'
/var/www/discourse/lib/middleware/csp_script_nonce_injector.rb:12:in `call'
/var/www/discourse/config/initializers/008-rack-cors.rb:14:in `call'
rack-2.2.10/lib/rack/session/abstract/id.rb:266:in `context'
rack-2.2.10/lib/rack/session/abstract/id.rb:260:in `call'
actionpack-7.2.2/lib/action_dispatch/middleware/cookies.rb:704:in `call'
actionpack-7.2.2/lib/action_dispatch/middleware/callbacks.rb:31:in `block in call'
activesupport-7.2.2/lib/active_support/callbacks.rb:101:in `run_callbacks'
actionpack-7.2.2/lib/action_dispatch/middleware/callbacks.rb:30:in `call'
actionpack-7.2.2/lib/action_dispatch/middleware/debug_exceptions.rb:31:in `call'
actionpack-7.2.2/lib/action_dispatch/middleware/show_exceptions.rb:32:in `call'
logster-2.20.0/lib/logster/middleware/reporter.rb:40:in `call'
railties-7.2.2/lib/rails/rack/logger.rb:41:in `call_app'
railties-7.2.2/lib/rails/rack/logger.rb:29:in `call'
/var/www/discourse/config/initializers/100-quiet_logger.rb:20:in `call'
/var/www/discourse/config/initializers/100-silence_logger.rb:29:in `call'
actionpack-7.2.2/lib/action_dispatch/middleware/request_id.rb:33:in `call'
/var/www/discourse/lib/middleware/enforce_hostname.rb:24:in `call'
rack-2.2.10/lib/rack/method_override.rb:24:in `call'
actionpack-7.2.2/lib/action_dispatch/middleware/executor.rb:16:in `call'
rack-2.2.10/lib/rack/sendfile.rb:110:in `call'
rack-mini-profiler-3.3.1/lib/mini_profiler.rb:191:in `call'
/var/www/discourse/lib/middleware/processing_request.rb:12:in `call'
message_bus-4.3.8/lib/message_bus/rack/middleware.rb:60:in `call'
/var/www/discourse/lib/middleware/request_tracker.rb:360:in `call'
actionpack-7.2.2/lib/action_dispatch/middleware/remote_ip.rb:96:in `call'
railties-7.2.2/lib/rails/engine.rb:535:in `call'
railties-7.2.2/lib/rails/railtie.rb:226:in `public_send'
railties-7.2.2/lib/rails/railtie.rb:226:in `method_missing'
rack-2.2.10/lib/rack/urlmap.rb:74:in `block in call'
rack-2.2.10/lib/rack/urlmap.rb:58:in `each'
rack-2.2.10/lib/rack/urlmap.rb:58:in `call'
unicorn-6.1.0/lib/unicorn/http_server.rb:634:in `process_client'
unicorn-6.1.0/lib/unicorn/http_server.rb:739:in `worker_loop'
unicorn-6.1.0/lib/unicorn/http_server.rb:547:in `spawn_missing_workers'
unicorn-6.1.0/lib/unicorn/http_server.rb:143:in `start'
unicorn-6.1.0/bin/unicorn:128:in `<top (required)>'
/var/www/discourse/vendor/bundle/ruby/3.3.0/bin/unicorn:25:in `load'
/var/www/discourse/vendor/bundle/ruby/3.3.0/bin/unicorn:25:in `<main>'

这是 oAuth2 设置:

A screenshot of a web interface showing a form for setting up OAuth2 client credentials, including fields for client ID, client secret, authorize URL, token URL, and other configuration options. (Captioned by AI)
A screenshot of a web interface showing a form for setting up OAuth2 client credentials, including fields for client ID, client secret, authorize URL, token URL, and other configuration options. (Captioned by AI)617×646 56.9 KB

The image displays a settings page for OAuth2 user details, including various fields for fetching, verifying, and retrieving information from OAuth2 user JSON URLs. (Captioned by AI)
The image displays a settings page for OAuth2 user details, including various fields for fetching, verifying, and retrieving information from OAuth2 user JSON URLs. (Captioned by AI)899×761 44.1 KB

2

您好,请将错误消息放在三个反引号(```)之间。

```
error message here
```
2 个赞
3

@Steve_John 我已将您的帖子格式化为包含代码块 ``` 中的日志。将来,我建议使用 Nate 上面建议的方式来放置错误或代码。

鉴于这是一个 faraday 格式化问题,并且您在刷新时成功进行了身份验证,我建议您关闭此设置:oauth2_debug_auth,这样您将不再看到该错误。

1 个赞
4

好的,娜塔莉……将按建议进行,并感谢您更新它们。

5

这是当前的设置,您想禁用此设置。::

Discourse 配置页面的屏幕截图,其中包含 OAuth2 身份验证选项,包括电子邮件验证、头像路径和调试信息的设置。(由 AI 标注)
Discourse 配置页面的屏幕截图,其中包含 OAuth2 身份验证选项,包括电子邮件验证、头像路径和调试信息的设置。(由 AI 标注)854×883 55.7 KB

6

我尝试禁用这些选项并重新测试,在 5 次重新登录尝试中……有一次再次出现相同的错误,此问题并未完全解决。

The image displays an error message on a discussion forum, apologizing for an unexpected problem and suggesting that the software encountered an issue. (Captioned by AI)
The image displays an error message on a discussion forum, apologizing for an unexpected problem and suggesting that the software encountered an issue. (Captioned by AI)1462×255 12.3 KB

7

再次查看,oauth2_debug_auth 设置可能在服务器启动时生效,因为 oauth 中间件和调试日志记录器在该时间被附加。

def register_middleware(omniauth)
  omniauth.provider :oauth2_basic,
  ...
      opts[:client_options][:connection_build] = lambda do |builder|
        if SiteSetting.oauth2_debug_auth && defined?(OAuth2FaradayFormatter)
          builder.response :logger,
                         Rails.logger,
                         { bodies: true, formatter: OAuth2FaradayFormatter }
        end
  ...
    }
end

大多数站点设置不需要重启,但您需要重启服务器才能使此特定设置生效。

话虽如此,真正根本的问题是 Faraday::TimeoutError (Timeout::Error)。我认为我关闭日志的建议不会解决您的问题。您可能需要检查您的 Discourse 实例和 OAuth2 提供商之间的网络是否存在任何问题。