Can not create first admin account #getting_started/admin

Herbstweiss · March 3, 2020, 7:38am

Used Zammad version: 3.2.0-1583078335.fd84f3a1.bionic
Used Zammad installation source: Install on Ubuntu via DEB
Operating system: 18.04.4 LTS (GNU/Linux 4.15.0-88-generic x86_64)
Browser + version: Firefox ESR 68.5 / IE 11.657

Expected behavior:

Aafter installation, create the first account (admin account) and log in.

Actual behavior:

Unfortunately it always fails when trying to create the “first” admin account. We always get the message “can’t create User”.

Steps to reproduce the behavior:

We have installed the server several times according to the instructions and have always followed the instructions.
No matter whether from Zammad himself or from other websites, no installation went better.
So far we have used Debian10, CentOS7 and Ubuntu 18.04 for the Linux distributions.
Also had no influence on the result.

MrGeneration · March 3, 2020, 4:56pm

Welcome to the community,

for context: This originally comes from this issue: https://github.com/zammad/zammad/issues/2945

The logfile you provided states you’re having issues with CSRF:

I, [2020-03-02T11:30:58.951421 #65725-47398749952320]  INFO -- : Processing by UsersController#create as JSON
I, [2020-03-02T11:30:58.951535 #65725-47398749952320]  INFO -- :   Parameters: {"firstname"=>"Johannes", "lastname"=>"Weisgerber", "email"=>"someone@domain.tld", "password"=>"[FILTERED]", "role_ids"=>[], "id"=>"c-2"}
I, [2020-03-02T11:30:58.951995 #65725-47398749952320]  INFO -- : CSRF token verification failed

I suspect you using HTTPs for your installation.
While that’s perfectly fine, the default configuration might be missing the required vhost configuration.

If you’re running apache, add the following two lines within your Zammad vhost configuration:

RequestHeader set X_FORWARDED_PROTO 'https' 
RequestHeader set X-Forwarded-Ssl on

In case you don’t have the headers module active in apache, additionally run a2enmod headers.

If you’re a nginx user, replace the following line
proxy_set_header X-Forwarded-Proto $scheme;
by
proxy_set_header X-Forwarded-Proto https;.

With these changes, after restarting your webserver, you should be good to go!

MrGeneration · March 4, 2020, 5:32pm

Well sorry I was expecting https connections.
Change “https” to “http” and you should be good to go.

Herbstweiss · March 5, 2020, 7:33am

Hello MrGeneration,

unfortunately that is not the solution either.
Even if I set the settings to “http” I still get the message that I cannot create an account.
Is there another source in the system that can cause this error?

sinichi19 · March 5, 2020, 10:16am

if this is your official domain name kindly delete/change your posted nginx config

MrGeneration · March 9, 2020, 10:48am

None I can think of if you’re not using like more than one proxy.
If the nginx mentioned above is one of several proxies, then this will be hard to correct for us here.

You’re having CSRF token issues, the by me linked configuration changes are technically solving this issue. Reload your browser and ensure it’s not a caching issue.

system · July 7, 2020, 10:48am

This topic was automatically closed 120 days after the last reply. New replies are no longer allowed.