Unable to login as admin user after CLI installation of 8.3.0

joho · 22 May 2023 15:13

After having tried the web based installer a number of times without success, I re-created the application directory and did a fresh install using console like this:

./bin/console suitecrm:app:install -u "my_admin" -p "my_secret_password" -U "db_user" -P "db_password" -H "127.0.0.1" -N "db_suitecrm" -S "https://mydomain.com" -d "no"

The installation completes without errors. But I cannot login with my_admin and my_secret_password

I simply get “invalid credentials”. There are no errors in the PHP log file, and no errors in the Apache log file(s).

Looking at the database directly in MySQL (MariaDB), the user is there, and has the correct admin flag set.

When I go to https://mydomain.com, I am greeted with a rather odd looking login screen, with no placeholder texts in the input fields and login button. If I clear the cache directories and re-load the page it displays OK.

joho · 22 May 2023 15:18

If I wait some time before I try logging in, I get a different error message that says:

Error occurred while retrieving records

prod.log is filled with interesting information, but I’m assuming none of them are relevant, since I’m actually using 8.3.0 which I guess is considered stable?

Some examples:

[2023-05-22 17:16:05] php.INFO: User Deprecated: Since api-platform/core 2.7: Use an implementation of "ApiPlatform\Api\IriConverterInterface" instead of "ApiPlatform\Core\Api\IriConverterInterface". {"exception":"[object] (ErrorException(code: 0): User Deprecated: Since api-platform/core 2.7: Use an implementation of \"ApiPlatform\\Api\\IriConverterInterface\" instead of \"ApiPlatform\\Core\\Api\\IriConverterInterface\". at /var/www/suitecrm/public_html/vendor/api-platform/core/src/JsonLd/Serializer/ObjectNormalizer.php:44)"} []
[2023-05-22 17:16:05] request.ERROR: Uncaught PHP Exception Symfony\Component\HttpKernel\Exception\AccessDeniedHttpException: "Invalid CSRF token" at /var/www/suitecrm/public_html/core/backend/Security/CSRFValidationListener.php line 96 {"exception":"[object] (Symfony\\Component\\HttpKernel\\Exception\\AccessDeniedHttpException(code: 0): Invalid CSRF token at /var/www/suitecrm/public_html/core/backend/Security/CSRFValidationListener.php:96)"} []
[2023-05-22 17:16:05] php.INFO: User Deprecated: Since api-platform/core 2.7: Use "ApiPlatform\Metadata\Resource\Factory\ResourceMetadataCollectionFactoryInterface" instead of "ApiPlatform\Core\Metadata\Resource\Factory\ResourceMetadataFactoryInterface". {"exception":"[object] (ErrorException(code: 0): User Deprecated: Since api-platform/core 2.7: Use \"ApiPlatform\\Metadata\\Resource\\Factory\\ResourceMetadataCollectionFactoryInterface\" instead of \"ApiPlatform\\Core\\Metadata\\Resource\\Factory\\ResourceMetadataFactoryInterface\". at /var/www/suitecrm/public_html/vendor/api-platform/core/src/Serializer/SerializerContextBuilder.php:41)"} []
[2023-05-22 17:16:05] php.INFO: User Deprecated: Since api-platform/core 2.7: Use "ApiPlatform\Metadata\Resource\Factory\ResourceMetadataCollectionFactoryInterface" instead of "ApiPlatform\Core\Metadata\Resource\Factory\ResourceMetadataFactoryInterface". {"exception":"[object] (ErrorException(code: 0): User Deprecated: Since api-platform/core 2.7: Use \"ApiPlatform\\Metadata\\Resource\\Factory\\ResourceMetadataCollectionFactoryInterface\" instead of \"ApiPlatform\\Core\\Metadata\\Resource\\Factory\\ResourceMetadataFactoryInterface\". at /var/www/suitecrm/public_html/vendor/api-platform/core/src/Serializer/SerializerFilterContextBuilder.php:40)"} []
[2023-05-22 17:16:05] php.INFO: User Deprecated: Since api-platform/core 2.7: The listener "ApiPlatform\Core\EventListener\ReadListener" is deprecated and will be replaced by "ApiPlatform\Symfony\EventListener\ReadListener" in 3.0. {"exception":"[object] (ErrorException(code: 0): User Deprecated: Since api-platform/core 2.7: The listener \"ApiPlatform\\Core\\EventListener\\ReadListener\" is deprecated and will be replaced by \"ApiPlatform\\Symfony\\EventListener\\ReadListener\" in 3.0. at /var/www/suitecrm/public_html/vendor/api-platform/core/src/Core/EventListener/ReadListener.php:66)"} []
[2023-05-22 17:16:05] php.INFO: User Deprecated: Since api-platform/core 2.7: Use "ApiPlatform\Metadata\Resource\Factory\ResourceMetadataCollectionFactoryInterface" instead of "ApiPlatform\Core\Metadata\Resource\Factory\ResourceMetadataFactoryInterface". {"exception":"[object] (ErrorException(code: 0): User Deprecated: Since api-platform/core 2.7: Use \"ApiPlatform\\Metadata\\Resource\\Factory\\ResourceMetadataCollectionFactoryInterface\" instead of \"ApiPlatform\\Core\\Metadata\\Resource\\Factory\\ResourceMetadataFactoryInterface\". at /var/www/suitecrm/public_html/vendor/api-platform/core/src/Symfony/EventListener/DeserializeListener.php:63)"} []
[2023-05-22 17:16:05] php.INFO: User Deprecated: Since api-platform/core 2.7: Use "ApiPlatform\Metadata\Resource\Factory\ResourceMetadataCollectionFactoryInterface" instead of "ApiPlatform\Core\Metadata\Resource\Factory\ResourceMetadataFactoryInterface". {"exception":"[object] (ErrorException(code: 0): User Deprecated: Since api-platform/core 2.7: Use \"ApiPlatform\\Metadata\\Resource\\Factory\\ResourceMetadataCollectionFactoryInterface\" instead of \"ApiPlatform\\Core\\Metadata\\Resource\\Factory\\ResourceMetadataFactoryInterface\". at /var/www/suitecrm/public_html/vendor/api-platform/core/src/Action/ExceptionAction.php:58)"} []

joho · 22 May 2023 15:23

Then there’s some stuff in suitecrm.log:

Mon May 22 16:57:01 2023 [111914][1][SECURITY] OutboundEmail::checkSavePermissions - not logged in - skipping check
Mon May 22 16:57:01 2023 [111914][1][FATAL] User update error: Temp User is not retrieved at ID 1, boolean given
Mon May 22 16:57:01 2023 [111914][1][FATAL] Email address save error
Mon May 22 16:57:02 2023 [111914][1][SECURITY] Invalid ext  logger_file_ext : ''.
Mon May 22 16:57:02 2023 [111914][1][SECURITY] Setting logger_file_ext to '.log'.
Mon May 22 16:57:02 2023 [111914][1][SECURITY] Setting logger_file_name to ''.
Mon May 22 16:57:02 2023 [111914][1][SECURITY] Log file extension can't be blank.
Mon May 22 16:57:02 2023 [111914][1][SECURITY] Setting logger_file_name to ''.
Mon May 22 16:57:02 2023 [111914][1][SECURITY] Log file extension can't be blank.

joho · 22 May 2023 15:39

If I open the web browser console, I see this:

https://mydomain.com/api/index.php?action=Login&module=Users
404 Not Found

So it seems I won’t be getting any further.

pgr · 22 May 2023 16:36

These kinds of initial problems with v8 are usually caused by

wrong ownerships permissions
wrong web root
wrong or missing mod_rewrite

These items are covered in the installation instructions, but there could be differences from system to system…

joho · 22 May 2023 20:38

Yes, I can understand that these are common issues, or places with issues.

But I think I have followed basically every piece of information I have been able to find, read log files, checked other posts, etc.

I’m using the .htaccess files as supplied in the .zip archive, all “roots” / “virtualhosts” are pointing to the public folder. I’m not seeing any errors in the PHP log file that I can relate to this, and everything is run as crmuser:crmgroup (PHP-FPM 8.0) and owned by crmuser:crmgroup, with folders being 770 and files being 660. Apache runs as www-data:www-data, and www-data is a member of crmgroup. I’m not getting any file or folder permission errors in any of the log files.

I’m a reasonably experienced PHP developer and system administrator (since 1998) for Linux systems, so I think I’ve checked in every place I can think of, but I could, of course, have missed something.

pgr · 23 May 2023 08:37

Which Linux are you running? If it uses SELinux you need to configure it.

You can also check your PHP’s session.save_path which needs to exist and be writeable.

Are you using the installer package (which includes the vendor directory) or a zip from Gituhb?

joho · 23 May 2023 08:52

I use Ubuntu 22.04.LTS. I have tried PHP-FPM 7.4 and PHP-FPM 8.0. I use MariaDB 10.6.

There are no errors with sessions that I’ve been able to find. The directory is writeable by PHP (and there are sessions files created in it).

I’ve filed an issue here:

github.com/salesagility/SuiteCRM-Core

Unable to login with admin user after fresh install of 8.3.0

opened 08:47AM - 23 May 23 UTC

joho1968

#### Issue I've spent the better part of two days trying to get a fresh install… of 8.3.0 up and running, and the installation completes successfully, but I cannot login with the admin user. I never get past the login screen. I have completed the installation via bin/console and via the "GUI Installer" with exactly the same behavior. I have tried using PHP 7.4 and PHP 8.0 with no difference. I have cleared the browser cache between attempt, re-started PHP, re-started Apache, re-started MariaDB ... #### Expected Behavior I should be able to login with the admin user after a fresh install. #### Actual Behavior On the first attempt, I get "Login credentials, please try again." in an "alert" above the login form. On the second attempt, I get "Error occurred while retrieving records". Right before I get the second message, I can see a glimpse of a dashboard or a menu, then it spits out the error message and I'm returned to an empty login form. I see this in the web console: ``` POST https://mydomain.com/login Status 401 Unauthorized ``` The request itself has a JSON payload with "password:" and "username", which contain the values I've entered. The response, also in JSON, says _"error: Invalid CSRF token"._ **Response cookies** ``` XSRF-TOKEN path "/" samesite "Lax" value "zBbXL5Gsz0WV3H2R8YMWl6Pa1ue-YAXOasdCeNv_eBo" ``` **Request cookies** ``` SUITECRM "k43snjnou8qp8l3qfnddpqpc6b" XSRF-TOKEN "Y8eg37sOmvhi1RrNCVvy8E8UsUeYVYlm_ciOIBAcF90" ``` #### Steps to Reproduce 1. Enter your username and password, click "Log in" 2. (I get "Login credentials, please try again." here) 3. Enter your username and password again, click "Log in" 4. (I get "Error occurred while retrieving records." here) #### Context I'm trying to login as admin to a fresh installation. I think this should be high priority, specially considering this is from a fresh install of 8.3.0. #### Your Environment * SuiteCRM Version used: 8.3.0 * Browser name and version (e.g. Chrome Version 51.0.2704.63 (64-bit)): I've tried both Chromium and Firefox, both under Linux * Environment name and version (e.g. MySQL, PHP 7): MariaDB 10.6.12, PHP-FPM 7.4.33/PHP-FPM 8.0.28, Apache/2.4.52 * Operating System and version (e.g Ubuntu 16.04): Ubuntu 22.04.LTS

I’m using the package available here (8.3):

That links leads to:
https://suitecrm.com/download/140/suite83/562304/suitecrm-8-3-0.zip

pgr · 23 May 2023 09:46

Can you try using a simpler password for admin? One with just letters or numbers, no symbols?

joho · 24 May 2023 19:15

Yeah, I did that. During my last attempts, I basically did an “admin/password” installation (not quite, but you get the idea), and that didn’t work either.

I realize this is probably a really strange issue, possibly caused by the “CSRF Token” issue (as reported on GitHub by others). But I cannot, at the moment, invest more time in this.

I ended up using the Bitnami SuiteCRM Docker image and got it running after tweaking my local Apache to act as an SSL-terminating reverse proxy. So it’s “all good”, but I would have liked to get the actual “raw” installation working as I can tweak MariaDB and PHP settings better in that situation.

Thanks for all your attempt at help though

JohnMLie · 17 June 2023 11:49

Did you test logging in locally, instead of via the website?
When I login directly on the server at home, there is no problem, but when I login via internet the login will fail most of the time…

joho · 21 June 2023 07:03

The server I’m working with is only reachable via the Internet, so I’m afraid that’s not an option. I also don’t think that’s the actual issue in my case. But thank you for your suggestion.