Sorry I'm not quite understanding where the problem is. You log in, but nothing happens?

From which version did you update?

Is the proxy maybe configured to forward the previous cookie name but not the new cookie name (I think the cookie name changed but not sure)

Just a guess: Did you update to Firefox 63 at the same time the problem started appearing?

The proxy is configured to forward everything, it might have an issue though. I'm testing with various browsers without privacy extensions turned on.

After a successfull login, $_COOKIE looks like this:

Array
(
    [piwik_auth] => login=abcdef=:token_auth=abcdef==:_=abcdef
    [PIWIK_SESSID] => abcdef
)

So I guess the I was wrong, the cookie is correctly sent by the browser.

I tried to debug more, but I think it's related to #12208 and I'm giving up. This new secure session stuff feels a bit too complicated to me.

I understand it's good security practice to fail without error messages, but it's frustrating. I have no idea where the problem is and the code base is too complex to debug for external people.

I'm available if you need more information.

Well, my bad. The cookie was set correctly but the session fingerprint wasn't initialised because the Login plugin wasn't updated to 3.6.1. I updated the plugin and now it works. It also explain the lack of error messages, it was a weird configuration (3.6.1 core and 3.5.1 login plugin).

Cheers.

Cheers for letting us know

Hi Guys,

Sadly, I am running into the same problem. Last week I had this exact same problem with 3.6.3 running on a kubernetes cluster using a copy of the docker images provides in the matomo-docker repository. I am storing the sessions in Redis, the PIWIK session shows up in redis and is the same ID as the one in my cookie. Still I am getting redirected to the login page after succesful login.

Is there a way to figure out what versions of plugins I am using without access to the admin panel?