Problems with mozilla-django-oidc callback

[leuat]

Hi there! OIDC & django n00b here, so please bear with me.

Set up mozilla-django-oidc on a https apache server with rs256 and correct endpoints (OIDC_OP_JWKS_ENDPOINT,OIDC_RP_SIGN_ALGO,OIDC_OP_TOKEN_ENDPOINT, OIDC_OP_AUTHORIZATION_ENDPOINT) all set etc.

I manage to log in - but afterwards, the server crashes with a json format error (basically crashing on "self.user = auth.authenticate(**kwargs)" in the MDO views.py

I have no idea what is going on here, and I'm unable to find any information on google about what this error could mean - any tips would be helpful!

python 3.6, django 3.2.4, mozilla-django-oidc 1.2.4

[leuat]

`Environment:

Request Method: GET
Request URL: https://www.nutil.org/oidc/callback/?state=UcE4K8MaU5FsnwgeenrAOWR72YdhQxOT&session_state=cb1ce972-0be7-4427-8bb5-78ff8449e728&code=243462ae-5bb1-4d11-9faa-fe3dc45d534d.cb1ce972-0be7-4427-8bb5-78ff8449e728.360bb004-2b5f-4d68-bcb0-c71b030be07c

Django Version: 3.2.4
Python Version: 3.6.9
Installed Applications:
['django.contrib.admin',
'django.contrib.auth',
'django.contrib.contenttypes',
'django.contrib.sessions',
'django.contrib.messages',
'django.contrib.staticfiles',
'mozilla_django_oidc']
Installed Middleware:
['django.middleware.security.SecurityMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.auth.middleware.AuthenticationMiddleware',
'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware']

Traceback (most recent call last):
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/django/core/handlers/exception.py", line 47, in inner
response = get_response(request)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/django/core/handlers/base.py", line 181, in _get_response
response = wrapped_callback(request, *callback_args, **callback_kwargs)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/django/views/generic/base.py", line 70, in view
return self.dispatch(request, *args, **kwargs)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/django/views/generic/base.py", line 98, in dispatch
return handler(request, *args, **kwargs)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/mozilla_django_oidc/views.py", line 99, in get
self.user = auth.authenticate(**kwargs)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/django/views/decorators/debug.py", line 42, in sensitive_variables_wrapper
return func(*func_args, **func_kwargs)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/django/contrib/auth/init.py", line 76, in authenticate
user = backend.authenticate(request, **credentials)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/mozilla_django_oidc/auth.py", line 286, in authenticate
return self.get_or_create_user(access_token, id_token, payload)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/mozilla_django_oidc/auth.py", line 307, in get_or_create_user
user_info = self.get_userinfo(access_token, id_token, payload)
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/mozilla_django_oidc/auth.py", line 245, in get_userinfo
return user_response.json()
File "/home/ubuntu/nutilweb/nutilenv/lib/python3.6/site-packages/requests/models.py", line 900, in json
return complexjson.loads(self.text, **kwargs)
File "/usr/lib/python3.6/json/init.py", line 354, in loads
return _default_decoder.decode(s)
File "/usr/lib/python3.6/json/decoder.py", line 339, in decode
obj, end = self.raw_decode(s, idx=_w(s, 0).end())
File "/usr/lib/python3.6/json/decoder.py", line 357, in raw_decode
raise JSONDecodeError("Expecting value", s, err.value) from None

Exception Type: JSONDecodeError at /oidc/callback/
Exception Value: Expecting value: line 2 column 1 (char 1)
`

[variable]

Any chance you can display the corrupted json content?

[leuat]

Back from holdays, gotta look into this again.

in auth.py "get_userinfo", user_response.json() crashes - also whenever I'm trying to print it to the log, so the format conversion fails (sys.stderr.write(user_response.json() crashes with the same message). Any ideas on how to actually view the response object?

[leuat]

resolved

[rhclayto]

resolved

@leuat

How did you resolve it? I'm having the same problem.

---

Edit: My working code change below. (Works with Authelia OpenID provider.) In auth.py

import json
def get_userinfo(self, access_token, id_token, payload):
        """Return user details dictionary. The id_token and payload are not used in
        the default implementation, but may be used when overriding this method"""

        user_response = requests.get(
            self.OIDC_OP_USER_ENDPOINT,
            headers={
                'Authorization': 'Bearer {0}'.format(access_token)
            },
            verify=self.get_settings('OIDC_VERIFY_SSL', True),
            timeout=self.get_settings('OIDC_TIMEOUT', None),
            proxies=self.get_settings('OIDC_PROXY', None))
        user_response.raise_for_status()
        msg = user_response.text
        utf8 = msg.encode('utf-8')
        jws = JWS.from_compact(utf8)
        jwsjson = json.loads(jws.payload)
        return jwsjson

[yasirgit]

resolved

How did you resolve this? Can I get some references? Struggling with the same issue.