OAuth2 Access/Refresh Token

[don]

Hello,

I am running Znuny 7.1 on a Debian 12 server.

I followed the instructions outlined here: https://doc.znuny.org/znuny/admin/authe ... index.html.

When I click the refresh button on the Znuny front end, the Microsoft authentication modal appears. After authenticating, I am redirected to the following link: https://xxxx/znuny/get-oauth2-token-by- ... e2875b27e1#.

This prompts me to log in using my admin credentials. Afterwards, I am brought to https://xxxx/znuny/get-oauth2-token-by- ... on-code.pl, but then nothing happens.

The FQDN and HttpType are set correctly in both the frontend and the config file on the server. I have also used Postman to retrieve a token from my app registration, so I don’t believe that’s the issue.

There are no errors shown in either error.log or access.log under /var/log/apache2. The firewall is configured correctly; I've checked my outbound rules and used curl to connect to the Microsoft endpoint.

I just can't get past the screen at https://xxxx/znuny/get-oauth2-token-by- ... on-code.pl, which asks me for credentials, but then nothing happens.

A similar issue is mentioned here: viewtopic.php?t=43272, but it does not explain how it was resolved.

[root]

Hi,

If there is login required again after you're redirected from Azure/O365, then your session cookie from Znuny was not be present anymore.
- Do you have cookies enabled (SessionUseCookie)?
- Is there a session id in the URL?

- Roy

[don]

Hello,

Thanks for the response.

I was able to retrieve the token after using a private browser.

To answer your questions;
Yes, SessionUseCookie is enabled.
No, there's no session ID in the URL.

This can be closed.

don