starred/vaultwarden
1
0
Fork 0
mirror of https://github.com/dani-garcia/vaultwarden.git synced 2025-12-10 01:10:09 +03:00
Code Issues 429 Packages Projects Releases 10 Wiki Activity

Error decoding JWT #90

New Issue
Closed
opened 2025-10-09 16:13:49 +03:00 by OVERLORD · 0 comments
OVERLORD commented 2025-10-09 16:13:49 +03:00
Owner
Copy Link

Originally created by @m0rp30 on GitHub.

Vaultwarden Support String

Your environment (Generated via diagnostics page)

  • Vaultwarden version: v1.34.1
  • Web-vault version: v2025.5.0
  • OS/Arch: linux/x86_64
  • Running within a container: true (Base: Debian)
  • Database type: SQLite
  • Database version: 3.49.1
  • Uses config.json: true
  • Uses a reverse proxy: true
  • IP Header check: true (X-Real-IP)
  • Internet access: true
  • Internet access via a proxy: false
  • DNS Check: true
  • TZ environment: Europe/Rome
  • Browser/Server Time Check: true
  • Server/NTP Time Check: true
  • Domain Configuration Check: true
  • HTTPS Check: true
  • Websocket Check: true
  • HTTP Response Checks: true

Config & Details (Generated via diagnostics page)

Show Config & Details

Environment settings which are overridden: ADMIN_TOKEN, SMTP_HOST, SMTP_SECURITY, SMTP_PORT, SMTP_FROM, SMTP_USERNAME, SMTP_PASSWORD

Config:

{
  "_duo_akey": null,
  "_enable_duo": false,
  "_enable_email_2fa": true,
  "_enable_smtp": true,
  "_enable_yubico": true,
  "_icon_service_csp": "",
  "_icon_service_url": "",
  "_ip_header_enabled": true,
  "_max_note_size": 10000,
  "_smtp_img_src": "***:",
  "admin_ratelimit_max_burst": 3,
  "admin_ratelimit_seconds": 300,
  "admin_session_lifetime": 20,
  "admin_token": "***",
  "allowed_connect_src": "",
  "allowed_iframe_ancestors": "",
  "attachments_folder": "data/attachments",
  "auth_request_purge_schedule": "30 * * * * *",
  "authenticator_disable_time_drift": false,
  "data_folder": "data",
  "database_conn_init": "",
  "database_max_conns": 10,
  "database_timeout": 30,
  "database_url": "***************",
  "db_connection_retries": 15,
  "disable_2fa_remember": false,
  "disable_admin_token": false,
  "disable_icon_download": false,
  "domain": "*****://******************",
  "domain_origin": "*****://******************",
  "domain_path": "",
  "domain_set": true,
  "duo_context_purge_schedule": "30 * * * * *",
  "duo_host": null,
  "duo_ikey": null,
  "duo_skey": null,
  "duo_use_iframe": false,
  "email_2fa_auto_fallback": false,
  "email_2fa_enforce_on_verified_invite": false,
  "email_attempts_limit": 3,
  "email_change_allowed": true,
  "email_expiration_time": 600,
  "email_token_size": 6,
  "emergency_access_allowed": true,
  "emergency_notification_reminder_schedule": "0 3 * * * *",
  "emergency_request_timeout_schedule": "0 7 * * * *",
  "enable_db_wal": true,
  "enable_websocket": true,
  "enforce_single_org_with_reset_pw_policy": false,
  "event_cleanup_schedule": "0 10 0 * * *",
  "events_days_retain": null,
  "experimental_client_feature_flags": "",
  "extended_logging": true,
  "helo_name": null,
  "hibp_api_key": null,
  "http_request_block_non_global_ips": true,
  "http_request_block_regex": null,
  "icon_blacklist_non_global_ips": true,
  "icon_blacklist_regex": null,
  "icon_cache_folder": "data/icon_cache",
  "icon_cache_negttl": 259200,
  "icon_cache_ttl": 2592000,
  "icon_download_timeout": 10,
  "icon_redirect_code": 302,
  "icon_service": "internal",
  "incomplete_2fa_schedule": "30 * * * * *",
  "incomplete_2fa_time_limit": 3,
  "increase_note_size_limit": false,
  "invitation_expiration_hours": 120,
  "invitation_org_name": "Vaultwarden",
  "invitations_allowed": false,
  "ip_header": "X-Real-IP",
  "job_poll_interval_ms": 30000,
  "log_file": null,
  "log_level": "info",
  "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f",
  "login_ratelimit_max_burst": 10,
  "login_ratelimit_seconds": 60,
  "org_attachment_limit": null,
  "org_creation_users": "",
  "org_events_enabled": false,
  "org_groups_enabled": false,
  "password_hints_allowed": true,
  "password_iterations": 600000,
  "push_enabled": false,
  "push_identity_uri": "https://identity.bitwarden.com",
  "push_installation_id": "***",
  "push_installation_key": "***",
  "push_relay_uri": "https://push.bitwarden.com",
  "reload_templates": false,
  "require_device_email": false,
  "rsa_key_filename": "data/rsa_key",
  "send_purge_schedule": "0 5 * * * *",
  "sendmail_command": null,
  "sends_allowed": true,
  "sends_folder": "data/sends",
  "show_password_hint": false,
  "signups_allowed": true,
  "signups_domains_whitelist": "",
  "signups_verify": false,
  "signups_verify_resend_limit": 6,
  "signups_verify_resend_time": 3600,
  "smtp_accept_invalid_certs": false,
  "smtp_accept_invalid_hostnames": false,
  "smtp_auth_mechanism": null,
  "smtp_debug": false,
  "smtp_embed_images": true,
  "smtp_explicit_tls": null,
  "smtp_from": "******************",
  "smtp_from_name": "Vaultwarden",
  "smtp_host": "*******************",
  "smtp_password": "***",
  "smtp_port": 587,
  "smtp_security": "starttls",
  "smtp_ssl": null,
  "smtp_timeout": 15,
  "smtp_username": "*******************",
  "templates_folder": "data/templates",
  "tmp_folder": "data/tmp",
  "trash_auto_delete_days": null,
  "trash_purge_schedule": "0 5 0 * * *",
  "use_sendmail": false,
  "use_syslog": false,
  "user_attachment_limit": null,
  "user_send_limit": null,
  "web_vault_enabled": true,
  "web_vault_folder": "web-vault/",
  "yubico_client_id": null,
  "yubico_secret_key": null,
  "yubico_server": null
}

Vaultwarden Build Version

v1.34.1

Deployment method

Official Container Image

Custom deployment method

No response

Reverse Proxy

nginx proxy manager latest

Host/Server Operating System

Linux

Operating System Version

Debian 12

Clients

Web Vault

Client Version

v2025.4.0

Steps To Reproduce

  1. Go to WebUI Organization
  2. Members
  3. Click on 'Inveite member'
  4. When a new member receive invitation
  5. Fill all field
  6. Click on 'Create account'

Expected Result

Conlusion of registration

Actual Result

The user receive that message 'Error decoding JWT'

Logs

[2025-07-10 12:38:52.511][request][INFO] GET /icons/192.168.1.150/icon.png
[2025-07-10 12:38:52.511][vaultwarden::api::icons][WARN] Blocked address: 192.168.1.150
[2025-07-10 12:38:52.511][response][INFO] (icon_internal) GET /icons/<domain>/icon.png => 200 OK
[2025-07-10 12:38:54.542][request][INFO] GET /api/ciphers/organization-details?organizationId=bce853ee-a78f-4
[2025-07-10 12:38:54.542][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/collections/details
[2025-07-10 12:38:54.542][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/groups
[2025-07-10 12:38:54.543][response][INFO] (get_groups) GET /api/organizations/<org_id>/groups => 200 OK
[2025-07-10 12:38:54.545][response][INFO] (get_org_collections_details) GET /api/organizations/<org_id>/collections/details => 200 OK
[2025-07-10 12:38:54.549][response][INFO] (get_org_details) GET /api/ciphers/organization-details?<data..> => 200 OK
[2025-07-10 12:38:54.553][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/billing/metadata
[2025-07-10 12:38:54.553][response][INFO] (get_billing_metadata) GET /api/organizations/<_org_id>/billing/metadata => 200 OK
[2025-07-10 12:38:56.195][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/keys
[2025-07-10 12:38:56.195][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3
[2025-07-10 12:38:56.196][response][INFO] (get_organization_keys) GET /api/organizations/<org_id>/keys => 200 OK
[2025-07-10 12:38:56.196][response][INFO] (get_organization) GET /api/organizations/<org_id> => 200 OK
[2025-07-10 12:38:57.251][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/users?includeCollections=true
[2025-07-10 12:38:57.252][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/collections
[2025-07-10 12:38:57.253][response][INFO] (get_org_collections) GET /api/organizations/<org_id>/collections => 200 OK
[2025-07-10 12:38:57.253][response][INFO] (get_members) GET /api/organizations/<org_id>/users?<data..> => 200 OK
[2025-07-10 12:41:26.324][request][INFO] GET /api/organizations/3D=bce853ee-a78f-4e22-bdc4-e37acc2d86c3/policies/token?token=3DeyJ0eXAiOiJKV1QiLCJhbG
[2025-07-10 12:41:26.325][vaultwarden::api::core::organizations::_][WARN] Parameter guard `org_id: OrganizationId` is forwarding: ().
[2025-07-10 12:41:26.325][auth][ERROR] Unauthorized Error: No access token provided
[2025-07-10 12:41:26.325][vaultwarden::api::core::organizations::_][WARN] Request guard `AdminHeaders` failed: "No access token provided".
[2025-07-10 12:41:26.325][response][INFO] (get_policy) GET /api/organizations/<org_id>/policies/<pol_type> => 401 Unauthorized
[2025-07-10 12:41:49.654][request][INFO] GET /api/organizations/3D=bce853ee-a78f-4e22-bdc4-e37acc2d86c3/policies/token?token=3DeyJ0eXAiOiJKV1QiLCJhbG
[2025-07-10 12:41:49.654][vaultwarden::api::core::organizations::_][WARN] Parameter guard `org_id: OrganizationId` is forwarding: ().
[2025-07-10 12:41:49.655][auth][ERROR] Unauthorized Error: No access token provided
[2025-07-10 12:41:49.655][vaultwarden::api::core::organizations::_][WARN] Request guard `AdminHeaders` failed: "No access token provided".
[2025-07-10 12:41:49.655][response][INFO] (get_policy) GET /api/organizations/<org_id>/policies/<pol_type> => 401 Unauthorized
[2025-07-10 12:42:23.076][request][INFO] POST /identity/accounts/register/finish
[2025-07-10 12:42:23.077][vaultwarden::auth][ERROR] Error decoding JWT
[2025-07-10 12:42:23.077][response][INFO] (register_finish) POST /identity/accounts/register/finish => 400 Bad Request
[2025-07-10 12:46:18.082][request][INFO] GET /icons/10.26.10.7/icon.png
[2025-07-10 12:46:18.082][vaultwarden::api::icons][WARN] Blocked address: 10.26.10.7
[2025-07-10 12:46:18.082][response][INFO] (icon_internal) GET /icons/<domain>/icon.png => 200 OK
[2025-07-10 12:47:12.339][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161
[2025-07-10 12:50:02.160][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL
[2025-07-10 12:50:02.160][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161
[2025-07-10 12:50:02.160][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
[2025-07-10 12:50:52.514][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161
[2025-07-10 12:50:52.514][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.27
[2025-07-10 12:50:52.514][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161
[2025-07-10 12:50:52.528][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161
[2025-07-10 12:54:34.682][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL
[2025-07-10 12:54:34.682][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161
[2025-07-10 12:54:34.682][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
[2025-07-10 12:54:55.805][request][INFO] POST /identity/connect/token
[2025-07-10 12:54:55.807][response][INFO] (login) POST /identity/connect/token => 200 OK
[2025-07-10 12:54:55.860][request][INFO] GET /api/sync?excludeDomains=true
[2025-07-10 12:54:55.879][response][INFO] (sync) GET /api/sync?<data..> => 200 OK
[2025-07-10 12:55:20.572][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL
[2025-07-10 12:55:20.572][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.27
[2025-07-10 12:55:20.572][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
[2025-07-10 12:55:23.405][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL
[2025-07-10 12:55:23.405][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161
[2025-07-10 12:55:23.405][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
[2025-07-10 12:55:44.116][request][INFO] POST /identity/connect/token
[2025-07-10 12:55:44.118][response][INFO] (login) POST /identity/connect/token => 200 OK
[2025-07-10 12:55:44.245][request][INFO] GET /api/accounts/revision-date
[2025-07-10 12:55:44.246][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK
[2025-07-10 12:57:49.575][request][INFO] GET /api/config
[2025-07-10 12:57:49.575][response][INFO] (config) GET /api/config => 200 OK
[2025-07-10 12:57:58.552][request][INFO] GET /icons/192.168.1.254/icon.png
[2025-07-10 12:57:58.552][vaultwarden::api::icons][WARN] Blocked address: 192.168.1.254
[2025-07-10 12:57:58.552][response][INFO] (icon_internal) GET /icons/<domain>/icon.png => 200 OK
[2025-07-10 13:00:35.955][request][INFO] GET /api/config
[2025-07-10 13:00:35.955][response][INFO] (config) GET /api/config => 200 OK
[2025-07-10 13:12:38.756][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161
[2025-07-10 13:13:27.958][request][INFO] GET /api/accounts/revision-date
[2025-07-10 13:13:27.958][vaultwarden::auth][ERROR] Token has expired
[2025-07-10 13:13:27.958][auth][ERROR] Unauthorized Error: Invalid claim
[2025-07-10 13:13:27.958][vaultwarden::api::core::accounts::_][WARN] Request guard `Headers` failed: "Invalid claim".
[2025-07-10 13:13:27.958][response][INFO] (revision_date) GET /api/accounts/revision-date => 401 Unauthorized
[2025-07-10 13:13:28.403][request][INFO] POST /identity/connect/token
[2025-07-10 13:13:28.404][response][INFO] (login) POST /identity/connect/token => 200 OK
[2025-07-10 13:13:28.558][request][INFO] GET /api/accounts/revision-date
[2025-07-10 13:13:28.558][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK
[2025-07-10 13:15:13.531][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL
[2025-07-10 13:15:13.531][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161
[2025-07-10 13:15:13.531][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
[2025-07-10 13:24:23.752][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161
[2025-07-10 13:24:23.989][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL
[2025-07-10 13:24:23.989][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161
[2025-07-10 13:24:23.989][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
[2025-07-10 13:25:39.192][request][INFO] GET /api/accounts/profile
[2025-07-10 13:25:39.193][response][INFO] (profile) GET /api/accounts/profile => 200 OK
[2025-07-10 13:26:49.685][request][INFO] GET /api/config
[2025-07-10 13:26:49.685][response][INFO] (config) GET /api/config => 200 OK
[2025-07-10 13:26:49.691][request][INFO] GET /api/accounts/revision-date
[2025-07-10 13:26:49.692][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK
[2025-07-10 13:26:49.706][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL
[2025-07-10 13:26:49.706][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161
[2025-07-10 13:26:49.706][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK
[2025-07-10 13:26:49.838][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/users?includeCollections=true
[2025-07-10 13:26:49.838][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/collections
[2025-07-10 13:26:49.839][response][INFO] (get_org_collections) GET /api/organizations/<org_id>/collections => 200 OK
[2025-07-10 13:26:49.840][response][INFO] (get_members) GET /api/organizations/<org_id>/users?<data..> => 200 OK
[2025-07-10 13:29:16.358][request][INFO] POST /identity/accounts/register/finish
[2025-07-10 13:29:16.358][vaultwarden::auth][ERROR] Error decoding JWT
[2025-07-10 13:29:16.358][response][INFO] (register_finish) POST /identity/accounts/register/finish => 400 Bad Request

Screenshots or Videos

Image Image

Additional Context

No response

Originally created by @m0rp30 on GitHub. ### Vaultwarden Support String ### Your environment (Generated via diagnostics page) * Vaultwarden version: v1.34.1 * Web-vault version: v2025.5.0 * OS/Arch: linux/x86_64 * Running within a container: true (Base: Debian) * Database type: SQLite * Database version: 3.49.1 * Uses config.json: true * Uses a reverse proxy: true * IP Header check: true (X-Real-IP) * Internet access: true * Internet access via a proxy: false * DNS Check: true * TZ environment: Europe/Rome * Browser/Server Time Check: true * Server/NTP Time Check: true * Domain Configuration Check: true * HTTPS Check: true * Websocket Check: true * HTTP Response Checks: true ### Config & Details (Generated via diagnostics page) <details><summary>Show Config & Details</summary> **Environment settings which are overridden:** ADMIN_TOKEN, SMTP_HOST, SMTP_SECURITY, SMTP_PORT, SMTP_FROM, SMTP_USERNAME, SMTP_PASSWORD **Config:** ```json { "_duo_akey": null, "_enable_duo": false, "_enable_email_2fa": true, "_enable_smtp": true, "_enable_yubico": true, "_icon_service_csp": "", "_icon_service_url": "", "_ip_header_enabled": true, "_max_note_size": 10000, "_smtp_img_src": "***:", "admin_ratelimit_max_burst": 3, "admin_ratelimit_seconds": 300, "admin_session_lifetime": 20, "admin_token": "***", "allowed_connect_src": "", "allowed_iframe_ancestors": "", "attachments_folder": "data/attachments", "auth_request_purge_schedule": "30 * * * * *", "authenticator_disable_time_drift": false, "data_folder": "data", "database_conn_init": "", "database_max_conns": 10, "database_timeout": 30, "database_url": "***************", "db_connection_retries": 15, "disable_2fa_remember": false, "disable_admin_token": false, "disable_icon_download": false, "domain": "*****://******************", "domain_origin": "*****://******************", "domain_path": "", "domain_set": true, "duo_context_purge_schedule": "30 * * * * *", "duo_host": null, "duo_ikey": null, "duo_skey": null, "duo_use_iframe": false, "email_2fa_auto_fallback": false, "email_2fa_enforce_on_verified_invite": false, "email_attempts_limit": 3, "email_change_allowed": true, "email_expiration_time": 600, "email_token_size": 6, "emergency_access_allowed": true, "emergency_notification_reminder_schedule": "0 3 * * * *", "emergency_request_timeout_schedule": "0 7 * * * *", "enable_db_wal": true, "enable_websocket": true, "enforce_single_org_with_reset_pw_policy": false, "event_cleanup_schedule": "0 10 0 * * *", "events_days_retain": null, "experimental_client_feature_flags": "", "extended_logging": true, "helo_name": null, "hibp_api_key": null, "http_request_block_non_global_ips": true, "http_request_block_regex": null, "icon_blacklist_non_global_ips": true, "icon_blacklist_regex": null, "icon_cache_folder": "data/icon_cache", "icon_cache_negttl": 259200, "icon_cache_ttl": 2592000, "icon_download_timeout": 10, "icon_redirect_code": 302, "icon_service": "internal", "incomplete_2fa_schedule": "30 * * * * *", "incomplete_2fa_time_limit": 3, "increase_note_size_limit": false, "invitation_expiration_hours": 120, "invitation_org_name": "Vaultwarden", "invitations_allowed": false, "ip_header": "X-Real-IP", "job_poll_interval_ms": 30000, "log_file": null, "log_level": "info", "log_timestamp_format": "%Y-%m-%d %H:%M:%S.%3f", "login_ratelimit_max_burst": 10, "login_ratelimit_seconds": 60, "org_attachment_limit": null, "org_creation_users": "", "org_events_enabled": false, "org_groups_enabled": false, "password_hints_allowed": true, "password_iterations": 600000, "push_enabled": false, "push_identity_uri": "https://identity.bitwarden.com", "push_installation_id": "***", "push_installation_key": "***", "push_relay_uri": "https://push.bitwarden.com", "reload_templates": false, "require_device_email": false, "rsa_key_filename": "data/rsa_key", "send_purge_schedule": "0 5 * * * *", "sendmail_command": null, "sends_allowed": true, "sends_folder": "data/sends", "show_password_hint": false, "signups_allowed": true, "signups_domains_whitelist": "", "signups_verify": false, "signups_verify_resend_limit": 6, "signups_verify_resend_time": 3600, "smtp_accept_invalid_certs": false, "smtp_accept_invalid_hostnames": false, "smtp_auth_mechanism": null, "smtp_debug": false, "smtp_embed_images": true, "smtp_explicit_tls": null, "smtp_from": "******************", "smtp_from_name": "Vaultwarden", "smtp_host": "*******************", "smtp_password": "***", "smtp_port": 587, "smtp_security": "starttls", "smtp_ssl": null, "smtp_timeout": 15, "smtp_username": "*******************", "templates_folder": "data/templates", "tmp_folder": "data/tmp", "trash_auto_delete_days": null, "trash_purge_schedule": "0 5 0 * * *", "use_sendmail": false, "use_syslog": false, "user_attachment_limit": null, "user_send_limit": null, "web_vault_enabled": true, "web_vault_folder": "web-vault/", "yubico_client_id": null, "yubico_secret_key": null, "yubico_server": null } ``` </details> ### Vaultwarden Build Version v1.34.1 ### Deployment method Official Container Image ### Custom deployment method _No response_ ### Reverse Proxy nginx proxy manager latest ### Host/Server Operating System Linux ### Operating System Version Debian 12 ### Clients Web Vault ### Client Version v2025.4.0 ### Steps To Reproduce 1. Go to WebUI Organization 2. Members 3. Click on 'Inveite member' 4. When a new member receive invitation 5. Fill all field 6. Click on 'Create account' ### Expected Result Conlusion of registration ### Actual Result The user receive that message 'Error decoding JWT' ### Logs ```text [2025-07-10 12:38:52.511][request][INFO] GET /icons/192.168.1.150/icon.png [2025-07-10 12:38:52.511][vaultwarden::api::icons][WARN] Blocked address: 192.168.1.150 [2025-07-10 12:38:52.511][response][INFO] (icon_internal) GET /icons/<domain>/icon.png => 200 OK [2025-07-10 12:38:54.542][request][INFO] GET /api/ciphers/organization-details?organizationId=bce853ee-a78f-4 [2025-07-10 12:38:54.542][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/collections/details [2025-07-10 12:38:54.542][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/groups [2025-07-10 12:38:54.543][response][INFO] (get_groups) GET /api/organizations/<org_id>/groups => 200 OK [2025-07-10 12:38:54.545][response][INFO] (get_org_collections_details) GET /api/organizations/<org_id>/collections/details => 200 OK [2025-07-10 12:38:54.549][response][INFO] (get_org_details) GET /api/ciphers/organization-details?<data..> => 200 OK [2025-07-10 12:38:54.553][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/billing/metadata [2025-07-10 12:38:54.553][response][INFO] (get_billing_metadata) GET /api/organizations/<_org_id>/billing/metadata => 200 OK [2025-07-10 12:38:56.195][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/keys [2025-07-10 12:38:56.195][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3 [2025-07-10 12:38:56.196][response][INFO] (get_organization_keys) GET /api/organizations/<org_id>/keys => 200 OK [2025-07-10 12:38:56.196][response][INFO] (get_organization) GET /api/organizations/<org_id> => 200 OK [2025-07-10 12:38:57.251][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/users?includeCollections=true [2025-07-10 12:38:57.252][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/collections [2025-07-10 12:38:57.253][response][INFO] (get_org_collections) GET /api/organizations/<org_id>/collections => 200 OK [2025-07-10 12:38:57.253][response][INFO] (get_members) GET /api/organizations/<org_id>/users?<data..> => 200 OK [2025-07-10 12:41:26.324][request][INFO] GET /api/organizations/3D=bce853ee-a78f-4e22-bdc4-e37acc2d86c3/policies/token?token=3DeyJ0eXAiOiJKV1QiLCJhbG [2025-07-10 12:41:26.325][vaultwarden::api::core::organizations::_][WARN] Parameter guard `org_id: OrganizationId` is forwarding: (). [2025-07-10 12:41:26.325][auth][ERROR] Unauthorized Error: No access token provided [2025-07-10 12:41:26.325][vaultwarden::api::core::organizations::_][WARN] Request guard `AdminHeaders` failed: "No access token provided". [2025-07-10 12:41:26.325][response][INFO] (get_policy) GET /api/organizations/<org_id>/policies/<pol_type> => 401 Unauthorized [2025-07-10 12:41:49.654][request][INFO] GET /api/organizations/3D=bce853ee-a78f-4e22-bdc4-e37acc2d86c3/policies/token?token=3DeyJ0eXAiOiJKV1QiLCJhbG [2025-07-10 12:41:49.654][vaultwarden::api::core::organizations::_][WARN] Parameter guard `org_id: OrganizationId` is forwarding: (). [2025-07-10 12:41:49.655][auth][ERROR] Unauthorized Error: No access token provided [2025-07-10 12:41:49.655][vaultwarden::api::core::organizations::_][WARN] Request guard `AdminHeaders` failed: "No access token provided". [2025-07-10 12:41:49.655][response][INFO] (get_policy) GET /api/organizations/<org_id>/policies/<pol_type> => 401 Unauthorized [2025-07-10 12:42:23.076][request][INFO] POST /identity/accounts/register/finish [2025-07-10 12:42:23.077][vaultwarden::auth][ERROR] Error decoding JWT [2025-07-10 12:42:23.077][response][INFO] (register_finish) POST /identity/accounts/register/finish => 400 Bad Request [2025-07-10 12:46:18.082][request][INFO] GET /icons/10.26.10.7/icon.png [2025-07-10 12:46:18.082][vaultwarden::api::icons][WARN] Blocked address: 10.26.10.7 [2025-07-10 12:46:18.082][response][INFO] (icon_internal) GET /icons/<domain>/icon.png => 200 OK [2025-07-10 12:47:12.339][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161 [2025-07-10 12:50:02.160][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL [2025-07-10 12:50:02.160][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161 [2025-07-10 12:50:02.160][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK [2025-07-10 12:50:52.514][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161 [2025-07-10 12:50:52.514][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.27 [2025-07-10 12:50:52.514][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161 [2025-07-10 12:50:52.528][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161 [2025-07-10 12:54:34.682][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL [2025-07-10 12:54:34.682][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161 [2025-07-10 12:54:34.682][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK [2025-07-10 12:54:55.805][request][INFO] POST /identity/connect/token [2025-07-10 12:54:55.807][response][INFO] (login) POST /identity/connect/token => 200 OK [2025-07-10 12:54:55.860][request][INFO] GET /api/sync?excludeDomains=true [2025-07-10 12:54:55.879][response][INFO] (sync) GET /api/sync?<data..> => 200 OK [2025-07-10 12:55:20.572][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL [2025-07-10 12:55:20.572][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.27 [2025-07-10 12:55:20.572][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK [2025-07-10 12:55:23.405][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL [2025-07-10 12:55:23.405][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161 [2025-07-10 12:55:23.405][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK [2025-07-10 12:55:44.116][request][INFO] POST /identity/connect/token [2025-07-10 12:55:44.118][response][INFO] (login) POST /identity/connect/token => 200 OK [2025-07-10 12:55:44.245][request][INFO] GET /api/accounts/revision-date [2025-07-10 12:55:44.246][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK [2025-07-10 12:57:49.575][request][INFO] GET /api/config [2025-07-10 12:57:49.575][response][INFO] (config) GET /api/config => 200 OK [2025-07-10 12:57:58.552][request][INFO] GET /icons/192.168.1.254/icon.png [2025-07-10 12:57:58.552][vaultwarden::api::icons][WARN] Blocked address: 192.168.1.254 [2025-07-10 12:57:58.552][response][INFO] (icon_internal) GET /icons/<domain>/icon.png => 200 OK [2025-07-10 13:00:35.955][request][INFO] GET /api/config [2025-07-10 13:00:35.955][response][INFO] (config) GET /api/config => 200 OK [2025-07-10 13:12:38.756][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161 [2025-07-10 13:13:27.958][request][INFO] GET /api/accounts/revision-date [2025-07-10 13:13:27.958][vaultwarden::auth][ERROR] Token has expired [2025-07-10 13:13:27.958][auth][ERROR] Unauthorized Error: Invalid claim [2025-07-10 13:13:27.958][vaultwarden::api::core::accounts::_][WARN] Request guard `Headers` failed: "Invalid claim". [2025-07-10 13:13:27.958][response][INFO] (revision_date) GET /api/accounts/revision-date => 401 Unauthorized [2025-07-10 13:13:28.403][request][INFO] POST /identity/connect/token [2025-07-10 13:13:28.404][response][INFO] (login) POST /identity/connect/token => 200 OK [2025-07-10 13:13:28.558][request][INFO] GET /api/accounts/revision-date [2025-07-10 13:13:28.558][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK [2025-07-10 13:15:13.531][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL [2025-07-10 13:15:13.531][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161 [2025-07-10 13:15:13.531][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK [2025-07-10 13:24:23.752][vaultwarden::api::notifications][INFO] Closing WS connection from 192.168.1.161 [2025-07-10 13:24:23.989][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL [2025-07-10 13:24:23.989][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161 [2025-07-10 13:24:23.989][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK [2025-07-10 13:25:39.192][request][INFO] GET /api/accounts/profile [2025-07-10 13:25:39.193][response][INFO] (profile) GET /api/accounts/profile => 200 OK [2025-07-10 13:26:49.685][request][INFO] GET /api/config [2025-07-10 13:26:49.685][response][INFO] (config) GET /api/config => 200 OK [2025-07-10 13:26:49.691][request][INFO] GET /api/accounts/revision-date [2025-07-10 13:26:49.692][response][INFO] (revision_date) GET /api/accounts/revision-date => 200 OK [2025-07-10 13:26:49.706][request][INFO] GET /notifications/hub?access_token=eyJ0eXAiOiJKV1QiL [2025-07-10 13:26:49.706][vaultwarden::api::notifications][INFO] Accepting Rocket WS connection from 192.168.1.161 [2025-07-10 13:26:49.706][response][INFO] (websockets_hub) GET /notifications/hub?<data..> => 200 OK [2025-07-10 13:26:49.838][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/users?includeCollections=true [2025-07-10 13:26:49.838][request][INFO] GET /api/organizations/bce853ee-a78f-4e22-bdc4-e37acc2d86c3/collections [2025-07-10 13:26:49.839][response][INFO] (get_org_collections) GET /api/organizations/<org_id>/collections => 200 OK [2025-07-10 13:26:49.840][response][INFO] (get_members) GET /api/organizations/<org_id>/users?<data..> => 200 OK [2025-07-10 13:29:16.358][request][INFO] POST /identity/accounts/register/finish [2025-07-10 13:29:16.358][vaultwarden::auth][ERROR] Error decoding JWT [2025-07-10 13:29:16.358][response][INFO] (register_finish) POST /identity/accounts/register/finish => 400 Bad Request ``` ### Screenshots or Videos <img width="1690" height="796" alt="Image" src="https://github.com/user-attachments/assets/febc7fdc-f1b1-4bd9-8e42-592a0ef289d8" /> <img width="496" height="201" alt="Image" src="https://github.com/user-attachments/assets/6178dea9-51e0-40e2-bcaf-9d3dce97fc81" /> ### Additional Context _No response_
OVERLORD added the bug label 2025-10-09 16:13:49 +03:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
better for forum
bug
bug
bug
documentation
duplicate
enhancement
future Vault
good first issue
help wanted
low priority
notes
pull-request
Mirrored from GitHub Pull Request
 question
SSO
Third party
troubleshooting
troubleshooting
wontfix
No Label bug
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
OVERLORD
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/vaultwarden#90
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?