Login not possible with firefox 89 on macos - checking your browser before accessing
Summary
a colleague of mine is not able to use gitlab.com because of the cloudflare ddos protection. gitlab is in an endless loop of "checking your browser before accessing"
this is really a frustrating experience.
related to:
- gitlab-org/gitlab#286409 (closed)
- gitlab-org/gitlab-foss#50550 (moved)
- https://forum.gitlab.com/t/cant-open-the-signin-page-it-keeps-showing-checking-your-browser-before-accessing-gitlab-com/45857
tried to:
- disable all extensions
- allow all cookies (also from tracker)
- restarted firefox
- cleared cache & cookies
- checked the time and date of the computer https://support.mozilla.org/en-US/questions/1269260
notes:
- i am on the same network as my colleague with waterfox as browser and i have no problems (but i am always logged in) edit1: "i am always logged in" means i work quite a lot with gitlab and therefor was not auto-logged-out for quite a while. don't want to try to logout because i cannot afford not being able to login again.
the console output of the browser really doesn't looks cool to me. are you really misusing the SameSite attribute?
relevant output:
Some cookies are misusing the recommended “SameSite“ attribute 13
...
Cookie “cf_chl_2” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:1:22985
...
Cookie “cf_chl_seq_c3dede57f3285e5” has been rejected because it is already expired. c3dede57f3285e5long output
Some cookies are misusing the recommended “SameSite“ attribute 13 Cookie “cf_chl_2” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:1:22985 Cookie “cf_chl_2” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:1:23121 Cookie “cf_chl_prog” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite 3 v1:1:22985 Cookie “cf_chl_prog” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite 2 v1:1:22985 Cookie “cf_chl_cc_orxfOxRLfsHr” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:5:37171 Cookie “cf_chl_cc_IjPzAOseXeKr” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:5:37198 Cookie “cf_chl_cc_orxfOxRLfsHr” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:5:37265 Cookie “cf_chl_cc_IjPzAOseXeKr” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:5:37330 Cookie “cf_chl_cc_pbSacdzhOemC” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:5:33363 Cookie “cf_chl_prog” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:1:22985 Cookie “cf_chl_prog” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:5:385 Cookie “cf_chl_prog” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:1:22985 Cookie “cf_chl_prog” will be soon rejected because it has the “SameSite” attribute set to “None” or an invalid value, without the “secure” attribute. To know more about the “SameSite“ attribute, read https://developer.mozilla.org/docs/Web/HTTP/Headers/Set-Cookie/SameSite v1:5:385 Cookie “cf_chl_seq_6c0973618898c66” has been rejected because it is already expired. 6c0973618898c66 Navigated to https://gitlab.com/users/sign_in GEThttps://gitlab.com/users/sign_in [HTTP/2 503 Service Unavailable 17ms]Some cookies are misusing the recommended “SameSite“ attribute 13 Cookie “cf_chl_seq_c3dede57f3285e5” has been rejected because it is already expired. c3dede57f3285e5 Navigated to https://gitlab.com/users/sign_in GEThttps://gitlab.com/users/sign_in [HTTP/2 503 Service Unavailable 19ms]
Some cookies are misusing the recommended “SameSite“ attribute 15 Cookie “cf_chl_seq_ba71189e6f59144” has been rejected because it is already expired. ba71189e6f59144 Navigated to https://gitlab.com/users/sign_in GEThttps://gitlab.com/users/sign_in [HTTP/2 503 Service Unavailable 16ms]
Some cookies are misusing the recommended “SameSite“ attribute 16 Cookie “cf_chl_seq_d09b82f85764c8f” has been rejected because it is already expired. d09b82f85764c8f
Relevant logs and/or screenshots
edit1: clearification "always logged in"
Edited by julian