Grafana JWT, when refreshed in the browser (F5) in the dashboard, it redirects me to the login page

dairocortes · December 23, 2022, 2:04pm

I am using grafana v.9.3.2 since docker. I configured grafana with JWT, this is my grafana.ini

[server]
protocol = http
http_port = 3003
domain = qa-grafana.domain.com
root_url = https://qa-grafana.domain.com/

[session]
cookie_name = grafana_session
cookie_secure = false

[security]
admin_user = root
admin_password = root
cookie_samesite = disabled

[auth]
disable_login_form = true
signout_redirect_url= https://graf.auth.us-weast-1.amazoncognito.com/logout?client_id=1234&logout_uri=https://myapy.domain.com/users/logout

[auth.jwt]
enabled = true
enable_login_token = true
header_name = x-token-auth-qa
username_claim = sub
email_claim = sub
jwk_set_file = /tmp/jwks.json
auto_sign_up = true
url_login = true

I am getting access to the grafana using:
https://qa-grafana.domain.com/?auth_token=eyJraWQiOiI3S29xUjYwSlVsSVZaclhUenAzRWhpbEdnbTVPQVdqOW50K3V1UzdNK0cwPSIsImFsZyI&orgId=1
I login correctly using the JWT
I display the main menu of grafana
I access one of my dashboards and it works correctly from the grafana controls
But if I refresh (F5 or Reload this page option) from the chrome browser, it immediately redirects me to https://qa-grafana.domain.com/login

What is my mistake, what can I do to continue working with JWT and work correctly even if I refresh the page from the browser?

Thanks,

Dairo Cortes

jangaraj · December 23, 2022, 5:44pm

My stupid guess is that your auth token is expired. Do a standard debugging: increase grafana log level and check the logs.

raineester · March 7, 2023, 6:38am

I met same issue, I guess.
The token is not expired, and also there is x-jwt-assertion header in request section. After click a dashboard, the auth_token already disappeared in url, but the header of jwt still there, now works fine. Then I refresh the page manually by clicking refresh button of browser, it went to login page.
If I manually put the query auth_token back, it works again.
Many thanks for any help.

raineester · March 9, 2023, 10:02pm

Instead of passing jwt token in url, putting jwt in header before accessing grafana can avoid this issue.

Topic		Replies	Views
Grafana JWT token redirection is not woriking Authentication configuration , auth , jwt	1	1161	March 24, 2022
Authenticate via auth jwt Authentication jwt	0	310	December 21, 2023
After successful JWT authentication grafana is redirecting to login page Authentication auth , json , jwt	2	1276	November 1, 2022
Grafana JWT Authentication not working anymore after Update from Version 10 to 11 Authentication	11	393	July 8, 2024
Grafana login redirection loop Configuration	5	1355	August 11, 2022

Grafana JWT, when refreshed in the browser (F5) in the dashboard, it redirects me to the login page

Related topics