Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Admin User Identity Swap #3837

Closed
WesternSmokehousePartners opened this issue Feb 29, 2024 · 5 comments
Closed

Admin User Identity Swap #3837

WesternSmokehousePartners opened this issue Feb 29, 2024 · 5 comments

Comments

@WesternSmokehousePartners
Copy link

Short description: When a non-admin user assigns a ticket to an admin user, any active session for the admin user assumes the identity of the non-admin user.

We were able to replicate this issue many times. The users are on two separate workstations, and have not logged in to each other's workstation. I have attached a video that shows the identity swap. Any information for troubleshooting would be appreciated. We intend to implement LDAP authentication, which may fix the issue, but we want to verify that there won't be a potential swap of a non-admin user to become an admin user before we implement LDAP.

freescout_identity_vid.mp4

PHP version: 8.2.16
FreeScout version: 1.8.120 >> 1.8.122 (We updated when we noticed the problem. Problem persists.)
Database: MySQL
Are you using CloudFlare: No
Docker: Yes
LDAP: No
@freescout-helpdesk
Copy link
Contributor

freescout-helpdesk commented Feb 29, 2024
edited
Loading

Can you reproduce the issue on demo.freescout.net?
Are you using any non-official modules?
Is there anything in Manage > Logs > App Logs?

@WesternSmokehousePartners
Copy link
Author

@freescout-helpdesk.

###Can you reproduce the issue on demo.freescout.net?
I will try this.

###Are you using any non-official modules?
No. Only modules we've purchased from https://freescout.net/module/[module]

###Is there anything in Manage > Logs > App Logs?
Text:
error production 2024-02-29 10:19:05 The process has been signaled with signal "15". {"exception":"[object] (Symfony\Component\Process\Exception\RuntimeException(code: 0): The process has been signaled with signal "15". at /www/html/overrides/symfony/process/Process.php:434)
[stacktrace]
#0 /www/html/overrides/symfony/process/Process.php(212): Symfony\Component\Process\Process->wait()
#1 /www/html/vendor/laravel/framework/src/Illuminate/Console/Scheduling/Event.php(201): Symfony\Component\Process\Process->run()
#2 /www/html/vendor/laravel/framework/src/Illuminate/Console/Scheduling/Event.php(176): Illuminate\Console\Scheduling\Event->runCommandInForeground(Object(Illuminate\Foundation\Application))
#3 /www/html/vendor/laravel/framework/src/Illuminate/Console/Scheduling/ScheduleRunCommand.php(59): Illuminate\Console\Scheduling\Event->run(Object(Illuminate\Foundation\Application))
#4 [internal function]: Illuminate\Console\Scheduling\ScheduleRunCommand->handle()
#5 /www/html/overrides/laravel/framework/src/Illuminate/Container/BoundMethod.php(28): call_user_func_array(Array, Array)
#6 /www/html/overrides/laravel/framework/src/Illuminate/Container/BoundMethod.php(87): Illuminate\Container\BoundMethod::Illuminate\Container\{closure}()
#7 /www/html/overrides/laravel/framework/src/Illuminate/Container/BoundMethod.php(27): Illuminate\Container\BoundMethod::callBoundMethod(Object(Illuminate\Foundation\Application), Array, Object(Closure))
#8 /www/html/overrides/laravel/framework/src/Illuminate/Container/Container.php(549): Illuminate\Container\BoundMethod::call(Object(Illuminate\Foundation\Application), Array, Array, NULL)
#9 /www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(183): Illuminate\Container\Container->call(Array)
#10 /www/html/vendor/symfony/console/Command/Command.php(255): Illuminate\Console\Command->execute(Object(Symfony\Component\Console\Input\ArgvInput), Object(Illuminate\Console\OutputStyle))
#11 /www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(169): Symfony\Component\Console\Command\Command->run(Object(Symfony\Component\Console\Input\ArgvInput), Object(Illuminate\Console\OutputStyle))
#12 /www/html/vendor/symfony/console/Application.php(992): Illuminate\Console\Command->run(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#13 /www/html/vendor/symfony/console/Application.php(255): Symfony\Component\Console\Application->doRunCommand(Object(Illuminate\Console\Scheduling\ScheduleRunCommand), Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#14 /www/html/vendor/symfony/console/Application.php(148): Symfony\Component\Console\Application->doRun(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#15 /www/html/vendor/laravel/framework/src/Illuminate/Console/Application.php(88): Symfony\Component\Console\Application->run(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#16 /www/html/vendor/laravel/framework/src/Illuminate/Foundation/Console/Kernel.php(121): Illuminate\Console\Application->run(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#17 /www/html/artisan(60): Illuminate\Foundation\Console\Kernel->handle(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#18 {main}
"}

error production 2024-02-29 09:12:02 The process has been signaled with signal "15". {"exception":"[object] (Symfony\Component\Process\Exception\RuntimeException(code: 0): The process has been signaled with signal "15". at /www/html/overrides/symfony/process/Process.php:434)
[stacktrace]
#0 /www/html/overrides/symfony/process/Process.php(212): Symfony\Component\Process\Process->wait()
#1 /www/html/vendor/laravel/framework/src/Illuminate/Console/Scheduling/Event.php(201): Symfony\Component\Process\Process->run()
#2 /www/html/vendor/laravel/framework/src/Illuminate/Console/Scheduling/Event.php(176): Illuminate\Console\Scheduling\Event->runCommandInForeground(Object(Illuminate\Foundation\Application))
#3 /www/html/vendor/laravel/framework/src/Illuminate/Console/Scheduling/ScheduleRunCommand.php(59): Illuminate\Console\Scheduling\Event->run(Object(Illuminate\Foundation\Application))
#4 [internal function]: Illuminate\Console\Scheduling\ScheduleRunCommand->handle()
#5 /www/html/overrides/laravel/framework/src/Illuminate/Container/BoundMethod.php(28): call_user_func_array(Array, Array)
#6 /www/html/overrides/laravel/framework/src/Illuminate/Container/BoundMethod.php(87): Illuminate\Container\BoundMethod::Illuminate\Container\{closure}()
#7 /www/html/overrides/laravel/framework/src/Illuminate/Container/BoundMethod.php(27): Illuminate\Container\BoundMethod::callBoundMethod(Object(Illuminate\Foundation\Application), Array, Object(Closure))
#8 /www/html/overrides/laravel/framework/src/Illuminate/Container/Container.php(549): Illuminate\Container\BoundMethod::call(Object(Illuminate\Foundation\Application), Array, Array, NULL)
#9 /www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(183): Illuminate\Container\Container->call(Array)
#10 /www/html/vendor/symfony/console/Command/Command.php(255): Illuminate\Console\Command->execute(Object(Symfony\Component\Console\Input\ArgvInput), Object(Illuminate\Console\OutputStyle))
#11 /www/html/vendor/laravel/framework/src/Illuminate/Console/Command.php(169): Symfony\Component\Console\Command\Command->run(Object(Symfony\Component\Console\Input\ArgvInput), Object(Illuminate\Console\OutputStyle))
#12 /www/html/vendor/symfony/console/Application.php(992): Illuminate\Console\Command->run(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#13 /www/html/vendor/symfony/console/Application.php(255): Symfony\Component\Console\Application->doRunCommand(Object(Illuminate\Console\Scheduling\ScheduleRunCommand), Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#14 /www/html/vendor/symfony/console/Application.php(148): Symfony\Component\Console\Application->doRun(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#15 /www/html/vendor/laravel/framework/src/Illuminate/Console/Application.php(88): Symfony\Component\Console\Application->run(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#16 /www/html/vendor/laravel/framework/src/Illuminate/Foundation/Console/Kernel.php(121): Illuminate\Console\Application->run(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#17 /www/html/artisan(60): Illuminate\Foundation\Console\Kernel->handle(Object(Symfony\Component\Console\Input\ArgvInput), Object(Symfony\Component\Console\Output\ConsoleOutput))
#18 {main}
"}

Capture:
laravel-2024-02-29

I hope this is helpful.

@freescout-helpdesk
Copy link
Contributor

The error in log belongs to the background job (https://github.com/freescout-helpdesk/freescout/wiki/Background-Jobs), not to the browser request.

The problem may be in some load balancer, proxy, etc.

Try to check the error you receive in the browser console (Network tab). You can also try to enable debugging via .env file APP_DEBUG=true (and clear cache).

@WesternSmokehousePartners
Copy link
Author

We are using FreeScout through an NGINX Proxy Manager. Do you know of any settings in NPM that might cause this issue?

@WesternSmokehousePartners
Copy link
Author

WesternSmokehousePartners commented Feb 29, 2024
edited
Loading

It seems as though turning off the 'Cache Assets' setting in NGINX Proxy Manager fixed the issue.

Proxy_Cache_Assets

Thank you for the support!

Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@freescout-helpdesk @WesternSmokehousePartners