Get an error Unknown or invalid login ticket

artur.nesterenko · 2018-02-23 23:43:46 UTC

I have an SPA and I use auth0 lock widget for login.

Time by time some users are getting the error when trying to authorize.

error: access_dinied,
error_description: Unknown or invalid login ticket.

But in this time if I try login from another computer with the same credentials I haven’t got this error.

Tell me who met this problem and how to solve it?

ricardo.batista · 2018-02-23 23:46:26 UTC

Are you using Lock or Auth0.js? Which version? Could you share a snippet from your authentication request?

artur.nesterenko · 2018-02-26 16:48:10 UTC

I am using Lock latest version. options for widget

{
 redirect: false,
          auth: {
         redirect: false,
         sso: false,
         redirectUrl: window.location.origin,
         responseType: 'token id_token',
         params: {
           scope: 'openid',
         },
 }
 }

richard.dowinton · 2018-02-28 21:37:33 UTC

Does this occur in all browsers or just one? When you login from a computer that works, are you using the same browser version?

Also, does this occur only after you have been previously signed in and try to log back in after being signed out?

artur.nesterenko · 2018-03-01 17:16:04 UTC

This issue appears a suddenly on different version of browsers but most often on Mozilla and safari and one time was on Chrome

manuel.reil · 2018-03-12 20:48:40 UTC

Same here, only on Safari

v-matthew · 2018-03-13 22:09:02 UTC

We experienced the same issue here:

nick5 · 2018-03-28 03:57:59 UTC

I got the same issue and struggling to figure out the reason. I notice after clearing the cache , the user manages to login but it definitely not a way to solve this case.

venkata.dorisala · 2018-03-28 10:44:03 UTC

I am getting the same issue. I had put verification page in place but still unable to login. Error says “Unknown or Invalid login ticket”. Let me know if somebody fixed it.

jaqenhghar · 2018-04-03 16:22:41 UTC

We’re having the same problem. We saw it for the first time in Firefox after upgrading from Auth0.js 9.1.3 to 9.3.2.

The only way to login successfully was to clean the cookies.

kim.noel · 2018-04-09 16:36:12 UTC

For the ‘invalid login ticket’ error some have been experiencing, there was a fix deployed recently and should now be resolved. Please do not hesitate to respond if you notice any unexpected behaviour.

jacob.smith · 2018-04-25 14:56:22 UTC

@kim.noel I am still experiencing this bug.

kim.noel · 2018-04-25 15:16:23 UTC

Are you using Lock or Auth0.js? Is this happening with one user or all users, and/or occurring in a particular browser? Could you share a snippet from your authentication request?

jacob.smith · 2018-04-25 15:29:31 UTC

Lock. I’m creating new users, so all different. It happens 100% of the time in Chrome (v66.0.3359.117), but seems to work fine in Firefox (v59.0.2)

Not sure what you’re looking for in the authentication request (also not sure which fields are sensitive, so I may have replaced innocuous ones:

client_id: // i confirmed this matches
response_type: token id_token
redirect_uri: http://…/auth/callback
audience: // i confirmed this matches
connection: Username-Password-Authentication
nonce: // looks like some kind of hash
state: // looks like some kind of hash
scope: openid profile email
realm: Username-Password-Authentication
login_ticket: // looks like some kind of hash
auth0Client: // base64