`Can't verify CSRF token authenticity` error on sign in
Summary
I tried to deploy gitlab with current helm chart in minikube according to this guide: https://docs.gitlab.com/charts/development/minikube/
After all pods started, I've made port-forward to web-service. Gitlab sign-in page opened, but when I tried to login, 422 error page returned.
Steps to reproduce
-
Install minikube and create minikube cluster with:
minikube start --cpus 4 --memory 10240
-
Run:
helm upgrade --install gitlab gitlab/gitlab \
--timeout 600s \
-f https://gitlab.com/gitlab-org/charts/gitlab/raw/master/examples/values-minikube.yaml
-
Make port-forward of the
8080
webservice pod's port. -
Open in browser localhost address on port-forwarded port and try to sign in with initial root password.
Configuration used
From this file: https://gitlab.com/gitlab-org/charts/gitlab/raw/master/examples/values-minikube.yaml
Current behavior
422 error page on sign in.
Expected behavior
Successful login.
Versions
- Chart: 4.8.4
- Platform:
- Self-hosted: Minikube (
minikube version: v1.15.1, commit: 23f40a012abb52eff365ff99a709501a61ac5876
)
- Self-hosted: Minikube (
- Kubernetes: (
kubectl version
)- Client:
Client Version: version.Info{Major:"1", Minor:"16+", GitVersion:"v1.16.13-dispatcher", GitCommit:"fd22db44e150011eccc8729db223945384460143", GitTreeState:"clean", BuildDate:"2020-07-24T07:48:37Z", GoVersion:"go1.13.9", Compiler:"gc", Platform:"darwin/amd64"}
- Server:
Server Version: version.Info{Major:"1", Minor:"19", GitVersion:"v1.19.4", GitCommit:"d360454c9bcd1634cf4cc52d1867af5491dc9c5f", GitTreeState:"clean", BuildDate:"2020-11-11T13:09:17Z", GoVersion:"go1.15.2", Compiler:"gc", Platform:"linux/amd64"}
- Client:
- Helm:
version.BuildInfo{Version:"v3.5.2", GitCommit:"167aac70832d3a384f65f9745335e9fb40169dc2", GitTreeState:"dirty", GoVersion:"go1.15.7"}
Relevant logs
Webservice pod log:
*** /var/log/gitlab/production.log ***
Started POST "/users/sign_in" for 127.0.0.1 at 2021-02-14 22:08:04 +0000
Processing by SessionsController#create as HTML
Parameters: {"utf8"=>"✓", "authenticity_token"=>"[FILTERED]", "user"=>{"login"=>"root", "password"=>"[FILTERED]", "remember_me"=>"0"}, "commit"=>"Sign in"}
Can't verify CSRF token authenticity.
Completed 422 Unprocessable Entity in 2ms (ActiveRecord: 0.0ms | Elasticsearch: 0.0ms | Allocations: 360)
ActionController::InvalidAuthenticityToken (ActionController::InvalidAuthenticityToken):
lib/gitlab/metrics/elasticsearch_rack_middleware.rb:16:in `call'
lib/gitlab/middleware/rails_queue_duration.rb:33:in `call'
lib/gitlab/metrics/rack_middleware.rb:16:in `block in call'
lib/gitlab/metrics/transaction.rb:56:in `run'
lib/gitlab/metrics/rack_middleware.rb:16:in `call'
lib/gitlab/request_profiler/middleware.rb:17:in `call'
lib/gitlab/jira/middleware.rb:19:in `call'
lib/gitlab/middleware/go.rb:20:in `call'
lib/gitlab/etag_caching/middleware.rb:21:in `call'
lib/gitlab/middleware/multipart.rb:172:in `call'
lib/gitlab/middleware/read_only/controller.rb:50:in `call'
lib/gitlab/middleware/read_only.rb:18:in `call'
lib/gitlab/middleware/same_site_cookies.rb:27:in `call'
lib/gitlab/middleware/handle_malformed_strings.rb:21:in `call'
lib/gitlab/middleware/basic_health_check.rb:25:in `call'
lib/gitlab/middleware/handle_ip_spoof_attack_error.rb:25:in `call'
lib/gitlab/middleware/request_context.rb:23:in `call'
config/initializers/fix_local_cache_middleware.rb:9:in `call'
lib/gitlab/metrics/requests_rack_middleware.rb:76:in `call'
lib/gitlab/middleware/release_env.rb:12:in `call'
Edited by Anatoly