login problem #1078

New Issue

Closed

opened 2026-02-04 23:50:25 +03:00 by OVERLORD · 8 comments

OVERLORD commented 2026-02-04 23:50:25 +03:00

Owner

Copy Link

Originally created by @junhou-he on GitHub (Jul 20, 2021).

Subject of the issue

The user accepted the email invitation and an error occurred while creating the account

Deployment environment

• vaultwarden version: 1.22.1

• Install method: Docker image

• Clients used: web vault

• Reverse proxy and version: nginx-1.20.1-2

• MySQL/MariaDB or PostgreSQL version:

• Other relevant details:
  [error][ERROR] Error decoding JWT.
  [CAUSE] Error(
  InvalidSignature,
  )

Steps to reproduce

docker run -d --name vaultwarden -v /data/:/data/ -p 8080:80 vaultwarden/server:latest

Expected behaviour

The user accepts the email invitation and creates an account normally

Actual behaviour

The user accepted the email invitation and an error occurred while creating the account

Troubleshooting data

logs.txt

Originally created by @junhou-he on GitHub (Jul 20, 2021). <!-- # ### NOTE: Please update to the latest version of vaultwarden before reporting an issue! This saves you and us a lot of time and troubleshooting. See: * https://github.com/dani-garcia/vaultwarden/issues/1180 * https://github.com/dani-garcia/vaultwarden/wiki/Updating-the-vaultwarden-image # ### --> <!-- Please fill out the following template to make solving your problem easier and faster for us. This is only a guideline. If you think that parts are unnecessary for your issue, feel free to remove them. Remember to hide/redact personal or confidential information, such as passwords, IP addresses, and DNS names as appropriate. --> ### Subject of the issue <!-- Describe your issue here. --> The user accepted the email invitation and an error occurred while creating the account ### Deployment environment <!-- ========================================================================================= Preferably, use the `Generate Support String` button on the admin page's Diagnostics tab. That will auto-generate most of the info requested in this section. ========================================================================================= --> <!-- The version number, obtained from the logs (at startup) or the admin diagnostics page --> <!-- This is NOT the version number shown on the web vault, which is versioned separately from vaultwarden --> <!-- Remember to check if your issue exists on the latest version first! --> * vaultwarden version: 1.22.1 <!-- How the server was installed: Docker image, OS package, built from source, etc. --> * Install method: Docker image * Clients used: <!-- web vault, desktop, Android, iOS, etc. (if applicable) -->web vault * Reverse proxy and version: <!-- if applicable -->nginx-1.20.1-2 * * MySQL/MariaDB or PostgreSQL version: <!-- if applicable --> * Other relevant details: [error][ERROR] Error decoding JWT. [CAUSE] Error( InvalidSignature, ) ### Steps to reproduce <!-- Tell us how to reproduce this issue. What parameters did you set (differently from the defaults) and how did you start vaultwarden? --> docker run -d --name vaultwarden -v /data/:/data/ -p 8080:80 vaultwarden/server:latest ### Expected behaviour <!-- Tell us what you expected to happen --> The user accepts the email invitation and creates an account normally ### Actual behaviour <!-- Tell us what actually happened --> The user accepted the email invitation and an error occurred while creating the account ### Troubleshooting data <!-- Share any log files, screenshots, or other relevant troubleshooting data -->  [logs.txt](https://github.com/dani-garcia/vaultwarden/files/6844884/logs.txt)

OVERLORD closed this issue 2026-02-04 23:50:29 +03:00

OVERLORD commented 2026-02-04 23:50:37 +03:00

Author

Owner

Copy Link

@BlackDex commented on GitHub (Jul 20, 2021):

Either the user didn't accepted it soon enough, the token is only valid for 5 days. Or your security keys used to encode and decode those tokens were changed.

@BlackDex commented on GitHub (Jul 20, 2021): Either the user didn't accepted it soon enough, the token is only valid for 5 days. Or your security keys used to encode and decode those tokens were changed.

OVERLORD commented 2026-02-04 23:50:40 +03:00

Author

Owner

Copy Link

@junhou-he commented on GitHub (Jul 21, 2021):

Hi BlackDex,

The user creates an account within five minutes of sending the invitation and reports the error. I didn't change any security keys.

@junhou-he commented on GitHub (Jul 21, 2021): Hi BlackDex, The user creates an account within five minutes of sending the invitation and reports the error. I didn't change any security keys.

OVERLORD commented 2026-02-04 23:50:44 +03:00

Author

Owner

Copy Link

@BlackDex commented on GitHub (Jul 21, 2021):

Could you please generate a support string via/admin/diagnostics?

@BlackDex commented on GitHub (Jul 21, 2021): Could you please generate a support string via`/admin/diagnostics`?

OVERLORD commented 2026-02-04 23:50:49 +03:00

Author

Owner

Copy Link

@junhou-he commented on GitHub (Jul 21, 2021):

Hi ，

How to generate a support string, I can not find the path /admin/diagnostics

@junhou-he commented on GitHub (Jul 21, 2021): Hi ， How to generate a support string, I can not find the path /admin/diagnostics

OVERLORD commented 2026-02-04 23:50:58 +03:00

Author

Owner

Copy Link

@BlackDex commented on GitHub (Jul 21, 2021):

you need to go to https://your.domain.tld/admin/diagnostics that's it.

@BlackDex commented on GitHub (Jul 21, 2021): you need to go to `https://your.domain.tld/admin/diagnostics` that's it.

OVERLORD commented 2026-02-04 23:51:04 +03:00

Author

Owner

Copy Link

@junhou-he commented on GitHub (Jul 22, 2021):

Hi,

Your environment (Generated via diagnostics page)

• Vaultwarden version: v1.22.1
• Web-vault version: v2.20.4b
• Running within Docker: true
• Environment settings overridden: false
• Uses a reverse proxy: true
• IP Header check: true (X-Real-IP)
• Internet access: true
• Internet access via a proxy: false
• DNS Check: true
• Time Check: true
• Domain Configuration Check: true
• HTTPS Check: true
• Database type: SQLite
• Database version: 3.35.4
• Clients used:
• Reverse proxy and version:
• Other relevant information:

Config (Generated via diagnostics page)

Show Running Config

Environment settings which are overridden:

{
  "_duo_akey": null,
  "_enable_duo": false,
  "_enable_email_2fa": true,
  "_enable_smtp": true,
  "_enable_yubico": true,
  "_ip_header_enabled": true,
  "admin_token": "***",
  "allowed_iframe_ancestors": "",
  "attachments_folder": "data/attachments",
  "authenticator_disable_time_drift": false,
  "data_folder": "data",
  "database_max_conns": 10,
  "database_url": "****/**.*******",
  "db_connection_retries": 15,
  "disable_2fa_remember": false,
  "disable_admin_token": false,
  "disable_icon_download": false,
  "domain": "*****://*****.*******-********.***",
  "domain_origin": "*****://*****.*******-********.***",
  "domain_path": "",
  "domain_set": true,
  "duo_host": null,
  "duo_ikey": null,
  "duo_skey": null,
  "email_attempts_limit": 3,
  "email_expiration_time": 600,
  "email_token_size": 6,
  "enable_db_wal": true,
  "extended_logging": true,
  "helo_name": null,
  "hibp_api_key": null,
  "icon_blacklist_non_global_ips": true,
  "icon_blacklist_regex": null,
  "icon_cache_folder": "data/icon_cache",
  "icon_cache_negttl": 259200,
  "icon_cache_ttl": 2592000,
  "icon_download_timeout": 10,
  "invitation_org_name": "Vaultwarden",
  "invitations_allowed": true,
  "ip_header": "X-Real-IP",
  "job_poll_interval_ms": 30000,
  "log_file": null,
  "log_level": "Info",
  "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f",
  "org_attachment_limit": null,
  "org_creation_users": "",
  "password_iterations": 100000,
  "reload_templates": false,
  "require_device_email": false,
  "rsa_key_filename": "data/rsa_key",
  "send_purge_schedule": "0 5 * * * *",
  "sends_allowed": true,
  "sends_folder": "data/sends",
  "show_password_hint": true,
  "signups_allowed": true,
  "signups_domains_whitelist": "",
  "signups_verify": false,
  "signups_verify_resend_limit": 6,
  "signups_verify_resend_time": 3600,
  "smtp_accept_invalid_certs": false,
  "smtp_accept_invalid_hostnames": false,
  "smtp_auth_mechanism": null,
  "smtp_debug": false,
  "smtp_explicit_tls": false,
  "smtp_from": "*****@*******-********.***",
  "smtp_from_name": "Vaultwarden",
  "smtp_host": "*******.*******-********.***",
  "smtp_password": "***",
  "smtp_port": 25,
  "smtp_ssl": false,
  "smtp_timeout": 15,
  "smtp_username": "*****@*******-********.***",
  "templates_folder": "data/templates",
  "trash_auto_delete_days": null,
  "trash_purge_schedule": "0 5 0 * * *",
  "use_syslog": false,
  "user_attachment_limit": null,
  "web_vault_enabled": true,
  "web_vault_folder": "web-vault/",
  "websocket_address": "0.0.0.0",
  "websocket_enabled": false,
  "websocket_port": 3012,
  "yubico_client_id": null,
  "yubico_secret_key": null,
  "yubico_server": null
}

@junhou-he commented on GitHub (Jul 22, 2021): Hi, ### Your environment (Generated via diagnostics page) * Vaultwarden version: v1.22.1 * Web-vault version: v2.20.4b * Running within Docker: true * Environment settings overridden: false * Uses a reverse proxy: true * IP Header check: true (X-Real-IP) * Internet access: true * Internet access via a proxy: false * DNS Check: true * Time Check: true * Domain Configuration Check: true * HTTPS Check: true * Database type: SQLite * Database version: 3.35.4 * Clients used: * Reverse proxy and version: * Other relevant information: ### Config (Generated via diagnostics page) <details><summary>Show Running Config</summary> **Environment settings which are overridden:** ```json { "_duo_akey": null, "_enable_duo": false, "_enable_email_2fa": true, "_enable_smtp": true, "_enable_yubico": true, "_ip_header_enabled": true, "admin_token": "***", "allowed_iframe_ancestors": "", "attachments_folder": "data/attachments", "authenticator_disable_time_drift": false, "data_folder": "data", "database_max_conns": 10, "database_url": "****/**.*******", "db_connection_retries": 15, "disable_2fa_remember": false, "disable_admin_token": false, "disable_icon_download": false, "domain": "*****://*****.*******-********.***", "domain_origin": "*****://*****.*******-********.***", "domain_path": "", "domain_set": true, "duo_host": null, "duo_ikey": null, "duo_skey": null, "email_attempts_limit": 3, "email_expiration_time": 600, "email_token_size": 6, "enable_db_wal": true, "extended_logging": true, "helo_name": null, "hibp_api_key": null, "icon_blacklist_non_global_ips": true, "icon_blacklist_regex": null, "icon_cache_folder": "data/icon_cache", "icon_cache_negttl": 259200, "icon_cache_ttl": 2592000, "icon_download_timeout": 10, "invitation_org_name": "Vaultwarden", "invitations_allowed": true, "ip_header": "X-Real-IP", "job_poll_interval_ms": 30000, "log_file": null, "log_level": "Info", "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f", "org_attachment_limit": null, "org_creation_users": "", "password_iterations": 100000, "reload_templates": false, "require_device_email": false, "rsa_key_filename": "data/rsa_key", "send_purge_schedule": "0 5 * * * *", "sends_allowed": true, "sends_folder": "data/sends", "show_password_hint": true, "signups_allowed": true, "signups_domains_whitelist": "", "signups_verify": false, "signups_verify_resend_limit": 6, "signups_verify_resend_time": 3600, "smtp_accept_invalid_certs": false, "smtp_accept_invalid_hostnames": false, "smtp_auth_mechanism": null, "smtp_debug": false, "smtp_explicit_tls": false, "smtp_from": "*****@*******-********.***", "smtp_from_name": "Vaultwarden", "smtp_host": "*******.*******-********.***", "smtp_password": "***", "smtp_port": 25, "smtp_ssl": false, "smtp_timeout": 15, "smtp_username": "*****@*******-********.***", "templates_folder": "data/templates", "trash_auto_delete_days": null, "trash_purge_schedule": "0 5 0 * * *", "use_syslog": false, "user_attachment_limit": null, "web_vault_enabled": true, "web_vault_folder": "web-vault/", "websocket_address": "0.0.0.0", "websocket_enabled": false, "websocket_port": 3012, "yubico_client_id": null, "yubico_secret_key": null, "yubico_server": null } ``` </details>

OVERLORD commented 2026-02-04 23:51:13 +03:00

Author

Owner

Copy Link

@BlackDex commented on GitHub (Jul 22, 2021):

Well i have tested this my self the following way:

# Terminal 1
docker run --rm --name vaultwarden \
  -p 8080:80 \
  -e DOMAIN=http://127.0.0.1:8080 \
  -e SMTP_HOST=172.17.0.1 \
  -e SMTP_PORT=1025 \
  -e SMTP_SSL=false \
  -e SMTP_FROM=vw@vw.local \
  vaultwarden/server:latest

# Terminal 2
docker run --rm --name maildev \
  -p 1080:1080 \
  -p 1025:1025 \
  maildev/maildev

Within a browser i opened http://127.0.0.1:1080 and http://127.0.0.1:8080.
Then i created an account, and organization, and after that I invited a user. Checked the MailDev interface and used the received link to create an account. All works without any issues.

I also tested vaultwarden/server:testing same result.

@BlackDex commented on GitHub (Jul 22, 2021): Well i have tested this my self the following way: ```shell # Terminal 1 docker run --rm --name vaultwarden \ -p 8080:80 \ -e DOMAIN=http://127.0.0.1:8080 \ -e SMTP_HOST=172.17.0.1 \ -e SMTP_PORT=1025 \ -e SMTP_SSL=false \ -e SMTP_FROM=vw@vw.local \ vaultwarden/server:latest # Terminal 2 docker run --rm --name maildev \ -p 1080:1080 \ -p 1025:1025 \ maildev/maildev ``` Within a browser i opened `http://127.0.0.1:1080` and `http://127.0.0.1:8080`. Then i created an account, and organization, and after that I invited a user. Checked the MailDev interface and used the received link to create an account. All works without any issues. I also tested `vaultwarden/server:testing` same result.

OVERLORD commented 2026-02-04 23:51:25 +03:00

Author

Owner

Copy Link

@junhou-he commented on GitHub (Jul 23, 2021):

Okay ,thank you. The error may be caused by improper operation by the user, I will close this issue

@junhou-he commented on GitHub (Jul 23, 2021): Okay ,thank you. The error may be caused by improper operation by the user, I will close this issue

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

cached-config-operations

test_dylint

1.35.2

1.35.1

1.35.0

1.34.3

1.34.2

1.34.1

1.34.0

1.33.2

1.33.1

1.33.0

1.32.7

1.32.6

1.32.5

1.32.4

1.32.3

1.32.2

1.32.1

1.32.0

1.31.0

1.30.5

1.30.4

1.30.3

1.30.2

1.30.1

1.30.0

1.29.2

1.29.1

1.29.0

1.28.1

1.28.0

1.27.0

1.26.0

1.25.2

1.25.1

1.25.0

1.24.0

1.23.1

1.23.0

1.22.2

1.22.1

1.22.0

1.21.0

1.20.0

1.19.0

1.18.0

1.17.0

1.16.3

1.16.2

1.16.1

1.16.0

1.15.1

1.15.0

1.14.2

1.14.1

1.14

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.1

1.9.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.0

1.4.0

1.3.0

1.2.0

1.1.0

1.0.0

0.13.0

0.12.0

0.11.0

0.10.0

0.9.0

Labels

Clear labels

SSO

Third party

better for forum

bug

bug

documentation

duplicate

enhancement

future Vault

future Vault

future Vault

good first issue

help wanted

low priority

notes

pull-request

Mirrored from GitHub Pull Request

question

troubleshooting

wontfix

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

OVERLORD

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: starred/vaultwarden#1078