422 Error on login to Gitlab

DorraBenLetayfa · September 26, 2023, 9:40pm

Hello Team,
I installed gitlab latest version for 2k architecture using GET tool on ubutnu 22.04 VMs and everything went well until I tried to login to gitlab using the UI, it returns 422 The change you requested was rejected.

I looked into the logs and I found this:

{“method”:“POST”,“path”:“/users/sign_in","format":"html","controller":"SessionsController","action":"create","status":422,"time":"2023-09-26T20:54:31.260Z","params":[{"key":"authenticity_token","value":"[FILTERED]"},{"key":"user","value":{"login":"root","password":"[FILTERED]","remember_me":"0"}}],"remote_ip":"x.x.x.x","ua":"Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/117.0.0.0 Safari/537.36","queue_duration_s":0.034994,"request_urgency":"low","target_duration_s":5,"redis_calls":3,"redis_duration_s":0.001824,"redis_read_bytes":114,"redis_write_bytes":316,"redis_cache_calls":1,"redis_cache_duration_s":0.000799,"redis_cache_read_bytes":114,"redis_cache_write_bytes":96,"redis_sessions_calls":2,"redis_sessions_duration_s":0.001025,"redis_sessions_write_bytes":220,"db_count":2,"db_write_count":0,"db_cached_count":0,"db_replica_count":0,"db_primary_count":2,"db_main_count":2,"db_ci_count":0,"db_main_replica_count":0,"db_ci_replica_count":0,"db_replica_cached_count":0,"db_primary_cached_count":0,"db_main_cached_count":0,"db_ci_cached_count":0,"db_main_replica_cached_count":0,"db_ci_replica_cached_count":0,"db_replica_wal_count":0,"db_primary_wal_count":0,"db_main_wal_count":0,"db_ci_wal_count":0,"db_main_replica_wal_count":0,"db_ci_replica_wal_count":0,"db_replica_wal_cached_count":0,"db_primary_wal_cached_count":0,"db_main_wal_cached_count":0,"db_ci_wal_cached_count":0,"db_main_replica_wal_cached_count":0,"db_ci_replica_wal_cached_count":0,"db_replica_duration_s":0.0,"db_primary_duration_s":0.009,"db_main_duration_s":0.009,"db_ci_duration_s":0.0,"db_main_replica_duration_s":0.0,"db_ci_replica_duration_s":0.0,"cpu_s":0.036413,"mem_objects":13985,"mem_bytes":1602224,"mem_mallocs":4337,"mem_total_bytes":2161624,"pid":846543,"worker_id":"puma_4","rate_limiting_gates":[],"correlation_id":"01HB9MB91DEDNDB8JTN70JEHDC","exception.class":"ActionController::InvalidAuthenticityToken","exception.message":"Can't verify CSRF token authenticity.","exception.backtrace":["lib/gitlab/metrics/elasticsearch_rack_middleware.rb:16:in call’”,“lib/gitlab/middleware/memory_report.rb:13:in call'","lib/gitlab/middleware/speedscope.rb:13:in call’”,“lib/gitlab/database/load_balancing/rack_middleware.rb:23:in call'","lib/gitlab/middleware/rails_queue_duration.rb:33:in call’”,“lib/gitlab/etag_caching/middleware.rb:21:in call'","lib/gitlab/metrics/rack_middleware.rb:16:in block in call’”,“lib/gitlab/metrics/web_transaction.rb:46:in run'","lib/gitlab/metrics/rack_middleware.rb:16:in call’”,“lib/gitlab/jira/middleware.rb:19:in call'","lib/gitlab/middleware/go.rb:20:in call’”,“lib/gitlab/middleware/query_analyzer.rb:11:in block in call'","lib/gitlab/database/query_analyzer.rb:37:in within’”,“lib/gitlab/middleware/query_analyzer.rb:11:in call'","lib/gitlab/middleware/multipart.rb:173:in call’”,“lib/gitlab/middleware/read_only/controller.rb:50:in call'","lib/gitlab/middleware/read_only.rb:18:in call’”,“lib/gitlab/middleware/same_site_cookies.rb:27:in call'","lib/gitlab/middleware/basic_health_check.rb:25:in call’”,“lib/gitlab/middleware/handle_malformed_strings.rb:21:in call'","lib/gitlab/middleware/handle_ip_spoof_attack_error.rb:25:in call’”,“lib/gitlab/middleware/request_context.rb:15:in call'","lib/gitlab/middleware/webhook_recursion_detection.rb:15:in call’”,“config/initializers/fix_local_cache_middleware.rb:11:in call'","lib/gitlab/middleware/compressed_json.rb:44:in call’”,“lib/gitlab/middleware/rack_multipart_tempfile_factory.rb:19:in call'","lib/gitlab/middleware/sidekiq_web_static.rb:20:in call’”,“lib/gitlab/metrics/requests_rack_middleware.rb:79:in call'","lib/gitlab/middleware/release_env.rb:13:in call’”],“db_duration_s”:0.00199,“view_duration_s”:0.0,“duration_s”:0.00608}`

I changed nothing in the configuration of gitlab on the different nodes after the installation.
gitlab is not configured with HTTPs for the moment. so the problem is with http.
I tried cookies deletion and testing different browsers but none of those helped.

Any ideas on how to resolve that?

Thanks.

nelsnelson · April 2, 2024, 8:43pm

In my case, my similar issue running gitlab in a Ubuntu 22.04 VM was resolved when I added the following lines to /etc/gitlab/gitlab.rb:

nginx['real_ip_trusted_addresses'] = [
  '192.168.0.0/24',
  '192.168.128.0/24',
  '192.168.0.159'
]

And then ran sudo gitlab-ctl reconfigure, of course.

Those IP addresses are the ranges of IP addresses available to my local workstation’s virtual machines in bridged networking mode. I doubt the specific IP address of the VM itself is required, since the 192.168.0.0/24 entry already includes it, but I left it for completeness of examples. The 192.168.128.0/24 range will also cover the VM instance when running in Host-only networking mode.

Here’s the documentation for this solution: NGINX settings | GitLab