server icon indicating copy to clipboard operation
server copied to clipboard
verified publisher icon standardnotes

Brand new self-hosting server asks me for 2FA when trying to log in with existing account; rejects existing account's 2FA codes

Open infinitejones opened this issue 2 years ago • 1 comments

Possibly related to https://github.com/standardnotes/server/issues/460

I have an existing StandardNotes paid account, that I've been using with the SN's own server. I have 2FA set up on that account for logging in.

I'm testing the StandardNotes self-hosted server, and I've set it up on Docker on a server on my network, using the instructions here.

It works fine, and I can connect to it with a "virgin" SN free account I set up for initial testing purposes, from my desktop app, on a laptop on the same network. (Different email address from my existing SN paid account.)

I then tried setting up a separate Workspace in the desktop app, to sign into my self-hosted server using my paid account credentials. (If I'm ultimately going to move to my self-hosted server, I still want to be able to access my paid account functionality when using it).

However, on attempting to log in to my self-hosted server, Standard Notes tells me my 2FA credentials are incorrect. I'm not sure how the self-hosted server "knows" that it should request my 2FA code, since it's literally brand new and I've never logged into it with 2FA activated.

So I assume 2FA is requested as part of the app's log-in process and tried the following:

  • Logged into my existing paid account via the web app and disabled 2FA.
  • Confirmed I could log in to web app and desktop app hosted workspace with just username and password of my existing paid account

Then:

  • Tried logging into existing paid account on self-hosted workspace via desktop app - 2FA requested (despite my having disabled it for the account), and generated code rejected as incorrect.
  • Without re-enabling 2FA:
  • Completely uninstalled desktop app from the machine I'm using on, re-installed, tried logging into self-hosted server with existing account - 2FA requested, code rejected as incorrect
  • Installed desktop app on another machine, on which the desktop app has never been previously installed, and tried logging into self-hosted server with existing account - 2FA requested, code rejected as incorrect

So I'm not clear at this point what's going on. I can log into the SN-hosted server with my paid account just fine, with 2FA either enabled or disabled; but the app won't log in my paid account into my self-hosted server because it asks me for a TOTP regardless of whether 2FA is activated for the account or not; and tells me that my 2FA credentials are incorrect whenever it does.

infinitejones avatar Mar 08 '23 10:03 infinitejones

See https://standardnotes.com/help/81/why-am-i-asked-for-2FA-even-though-I-dont-have-it-enabled

moughxyz avatar Mar 08 '23 13:03 moughxyz