Open Bug 1858976 Opened 2 years ago Updated 1 year ago

gmail OAuth2 localhost problem - JavaScript error: chrome://global/content/aboutNetError.mjs, line 985: TypeError: document.getFailedCertSecurityInfo is not a function

Categories

(Thunderbird :: Security, defect)

Product:
Thunderbird
Component:
Security
Version:
Thunderbird 115
Type:
defect

Tracking

(Not tracked)

Status:
UNCONFIRMED

People

(Reporter: stanislav.tokos, Unassigned)

Details

User Agent: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/116.0.0.0 Safari/537.36

Steps to reproduce:

dejarnac@work-19-17:~$ thunderbird
[ImapModuleLoader] Using nsImapService.cpp
ATTENTION: default value of option mesa_glthread overridden by environment.
ATTENTION: default value of option mesa_glthread overridden by environment.
ATTENTION: default value of option mesa_glthread overridden by environment.
console.debug: "Found 0 public keys and 0 secret keys (0 protected, 0 unprotected)"
console.debug: "Successfully loaded optional OpenPGP library libgpgme.so.11 from system's standard library locations"
console.debug: "gpgme version: 1.13.1"
console.warn: services.settings: Failed to load last_modified.json: TypeError: NetworkError when attempting to fetch resource.
console.debug: "Trying to load /usr/lib/thunderbird/libotr.so"
console.debug: "Trying to load libotr.so from system's standard library locations"
console.debug: "Trying to load libotr.so.5 from system's standard library locations"
console.debug: "Successfully loaded OTR library libotr.so.5 from system's standard library locations"
console.warn: LoginRecipes: "Falling back to a synchronous message for: https://accounts.google.com."
JavaScript error: chrome://global/content/aboutNetError.mjs, line 985: TypeError: document.getFailedCertSecurityInfo is not a function

Actual results:

Redirect to bad address:
https://localhost/hub/login?next=%2Fhub%2F%3Fcode%3D4%252F0AfJohXmVhwWpV2p1bVNVOs6yC_UyYhGD30PAkI6jVMByZvE_N7bHqFndRx5rGLqMQtYpPQ%26scope%3Dhttps%253A%252F%252Fmail.google.com%252F%2Bhttps%253A%252F%252Fwww.googleapis.com%252Fauth%252Fcarddav%2Bhttps%253A%252F%252Fwww.googleapis.com%252Fauth%252Fcalendar

We are under NAT. I had to connect to another server with external address and mount home by NFS as workaround.

Group: mail-core-security
Summary: gmail OAuth2 localhost problem → gmail OAuth2 localhost problem - JavaScript error: chrome://global/content/aboutNetError.mjs, line 985: TypeError: document.getFailedCertSecurityInfo is not a function

What bug are you reporting? An OAuth2 callback to localhost is expected.

Yes, but when I am under NAT with rule 1:N this callback is not working.

NAT or not, localhost should resolve to your local machine without issues. (If it's not working you may need to force localhost to 127.0.0.1)

I know I have already tested change IPs in the /etc/hosts without success, but as I mentioned before. When I was under NAT 1:1 it works. When I was under NAT 1:N it doesn't work.

You need to log in before you can comment on or make changes to this bug.