OIDC issue, Laravel

**yuri** · 11-22-2023, 04:10 PM

For Oauth 2.0 working it is required that a specified redirect URL has a domain (and protocol) the same as the domain of your instance. When you open your CRM in the browser, URL should be the same as the URL specified in Administration > Settings > Site URL. It's usually correct, but sometimes instance is moved and one need to fix it.

Moreover, when you configure Oauth, you specify a proposed redirect URL on the side of auth provide. It could be that the specified URL is not correct or not specified.

**yuri** · 12-06-2023, 08:14 AM

exp is required in JWT payload. Try setting Espo log to DEBUG level. There will be more data logged in the log file. Find out why exp is empty or not integer in JWT token payload. The JSON you posted is not a JWT token.

Try also to change https://github.com/espocrm/espocrm/b...yload.php#L182

if ($exp !== null && !is_int($exp)) {

=>

if ($exp !== null && !is_numeric($exp)) {

+ the same for checks below. Maybe your provider send float values for time.

**Yura** · 12-06-2023, 07:40 PM

Спасибо за ответ!

Я дошёл до этого этапа после авторизации.

Не загружается сама админка сайта.

Я так понимаю, ругается на неверные пути к подключаемым файлам!

______________________

Thanks for the answer!

I got to this stage after logging in.

The site admin panel itself does not load.

As I understand it, swears at the wrong paths to the connected files!

**yuri** · 12-06-2023, 09:54 PM

Try to change Redirect URL to https://YOUR_DOMAIN/portal/oauth-callback.php. Remove ID part from the URL.

**Yura** · 12-12-2023, 09:27 AM

Here you can see what I get.
___________________________
Вот тут можно посмотреть что получаю.

I decided to add "portal" in the settings themselves, it didn't work!
__________________________________________________ _
Решил в самих настройках добавить "portal", не сработало!

As I understand it, if there was an error in the authorization itself, then I would not have reached the white screen with the inscription.
________________________________________________
Я так понимаю, если бы была ошибка в самой авторизации, тогда я бы не доходил до белого экрана с надписью.

If this window is not closed automatically, it's probable that URL you use to access EspoCRM doesn't match URL specified at Administration > Settings > Site URL.

I just have a sporting interest in solving this problem =))
_______________________________
У меня уже просто включается спортивный интерес решить эту задачу=))

**yuri** · 12-12-2023, 09:47 AM

When the popup window is not closed (it's supposed to be closed once you logged in on the auth provider side), do you get any errors in the browser console? The window where EspoCRM is opened tries to access the popup window (where the address location is redirector according the Redirect URL). There must be the console error when it can't access. Do errors keep appearing in the console with some short interval?

**item** · 12-12-2023, 01:45 PM

Hi,
maybe try this linux command : dig yourCrmUrl
sample : dig demo.espocm.com
the result must the ip of your crm

maybe, search equivalent for other operating system

OIDC issue, Laravel

OIDC issue, Laravel

Comment

Comment

Comment

Comment

Comment

Comment

Comment