Bad Token at Webinterface

  • 661 Views
  • Last Post 18 September 2019
blackzero23 posted this 29 August 2019

Hello, when i would manage my Instances the Webseite say:

Failed to login to remote instance Bad token, please login again

I habe relogin und restart the Server and i have updatet all.

I still have the problem too.

What i have to do???

MFG

Black Zero

Order By: Standard | Newest | Votes
Larkum posted this 17 September 2019

Hi Blackzero23,

Did you find a fix for this issue as I am having simular issue.

When connecting to the AMP web interface from a computer outside of my network, I am getting a 'Bad token, please login again' message. it is starange as it will log me in, show me my instances and then log me out and show me the above message.

Anyone have an idea on a fix for this?

regards Larkum

Mike posted this 17 September 2019

Are either of you using a reverse proxy such as Cloudflare?

  • Liked by
  • Larkum
Larkum posted this 18 September 2019

Hi Mike,

No I'm not.

I am using a dynamic IP, and routing my domain through no-ip, but I even tryed connecting direct to the server.

I have updated to latest version, now I am logging in getting to the home screen, but when I press on anything I get logged out and sometiems it logs me out without explanation and seemingly for no reason.

As I write this I have just had an error message popup which is new, I have attached a screen shot.

I am running:

AMP; 1.8.5.4 Ubuntu 19.04 8Gb Ram 2.00Ghz i7 Quad Core

Regards Richard

Image or error

Mike posted this 18 September 2019

Add this line to your AMPConfig.conf:

Login.AllowInsecureMatching=true

And try logging in again.

  • Liked by
  • Larkum
Larkum posted this 18 September 2019

Thank you Mike, that has done the trick, is that related to not having an SSL certificate installed?

Regards Richard

Mike posted this 18 September 2019

What that setting does is allow a session to 'float' between different IP addresses instead of locking login sessions to a single IP. The default behaviour is much more secure and prevents certain types of session hijacking, but doesn't cope well with certain ISPs or reverse proxies/load balancers where the requests end up distributed between IPs.

  • Liked by
  • Larkum
Close