Hello
I am running vaultwarden with docker compose on gcp.
I have already a FIDO U2F Security Key and a authenticator app set up with no Problem. Now if i want to add YubiKey OTP Security Key i get the following error:
and in the logs:
[2021-05-25 15:08:37.049][request][INFO] PUT /api/two-factor/yubikey
[2021-05-25 15:08:37.113][error][ERROR] Invalid Yubikey OTP provided.
[CAUSE] Network(
reqwest::Error {
kind: Builder,
source: RelativeUrlWithoutBase,
},
)
[2021-05-25 15:08:37.115][response][INFO] PUT /api/two-factor/yubikey (activate_yubikey_put) => 400 Bad Request
The Yubikey OTP validates on Yubico demo website
{
“otp”: “xxxx”,
“nonce”: “xxxxx”,
“sl”: “100”,
“status”: “OK”,
“t”: “2021-05-25T15:07:41Z0214”
}
and i set the infos in my .env:
YUBICO_CLIENT_ID=“12345”
YUBICO_SECRET_KEY=“xxxxxxxxxxxxxxxx”
YUBICO_SERVER=
Any ideas how i could get i working? Should i open a bug?
When i remove the empty YUBICO_SERVER i get the following in the logs:
[2021-05-25 16:21:18.993][error][ERROR] Invalid Yubikey OTP provided.
[CAUSE] Network(
reqwest::Error {
kind: Request,
url: Url {
scheme: “https”,
username: “”,
password: None,
host: Some(
Domain(
“api5.yubico.com”,
),
),
port: None,
path: “/wsapi/2.0/verify”,
query: Some(
“id=XXXXX&nonce=XXXXXX&otp=XXXXX&sl=XXXXXXXX”,
),
fragment: None,
},
source: TimedOut,
},
)
[2021-05-25 16:21:18.995][response][INFO] PUT /api/two-factor/yubikey (activate_yubikey_put) => 400 Bad Request