mirror of
https://github.com/actualbudget/actual.git
synced 2026-07-16 07:04:23 -05:00
[Bug]: Have to clear cookies every day in order to sync with bank #983
Closed
opened 2026-02-28 19:27:13 -06:00 by GiteaMirror
·
23 comments
No Branch/Tag Specified
master
dependabot/npm_and_yarn/npm_and_yarn-cd62b4b37a
api-browser-custom-data-dir
tabedzki/feat/replacing-month-picker-with-day-picker
delay-initial-sync-until-loaded
jfdoming/mobile-app-build
cross-version-sync-compat
jfdoming/api-tokens-part-1
jfdoming/api-tokens-part-2
jfdoming/api-tokens-part-3
jfdoming/mobile-app-updates
claude/budget-version-migration-compat-151jlr
claude/worker-error-serialization-9iqtl7
claude/react-table-library-research-afx83z
claude/issue-8401-regression-test-9nw9l3
jfdoming/mobile-app-foundation-part-1
jfdoming/mobile-app-scaffold
release
ai-fix-cleanup-def-8290
claude/relaxed-shannon-jusywa
claude/fervent-keller-s6f2fq
claude/determined-feynman-st1y9z
claude/wizardly-einstein-vi2wce
claude/sweet-albattani-7nseio
feat/bank-sync-per-budget-file
claude/affectionate-cannon-y0kc82
claude/dependabot-findings-m9pgmb
claude/mac-app-ios-publish-zjs1lz
claude/vigilant-tesla-aiiyos
depot-migrate-secrets-1781296330308
claude/quirky-cerf-v5qck7
claude/animation-removal-alternative-2etfh1
claude/netlify-preview-comments-consolidate-9XPYa
osc/7391-error-boundaries-reports
claude/pensive-dijkstra-7DYui
claude/server-app-version-mismatch-HTCGv
claude/pr-8027-review-feedback-mELuO
claude/zealous-wozniak-e5pO0
claude/intelligent-heisenberg-BSHJq
claude/translation-download-refactor-jFRsO
claude/mobile-performance-ideas-G9PAO
claude/github-issue-7988-5A5ly
blacksmith-migration-ff70d2d
claude/great-mayer-KRvOk
claude/react-native-ios-compilation-fcJh5
claude/serene-goldberg-58xv0
claude/kind-euler-LVG3K
release-automation/edge-nightly
7710-bundle-migrations
claude/fix-docker-build-error-WMfed
claude/llm-compatible-release-notes-t20Nr
7710-tests-tdd
cursor/transaction-table-rewrite-f077
claude/plan-ci-secure-context-OtEe1
claude/fix-issue-7667-DPXi3
cursor/resolve-pr-7449-ee11
claude/fix-typescript-build-error-JPtZ5
copilot/add-repository-configs-to-packages
worktree-compressed-drifting-ritchie
claude/api-consumer-verification-kfz1K
pr-7454
claude/fix-issue-7410-LLLQ4
revert-7281-generate-icons
react-query-useSchedules
copilot/sub-pr-6140
package-upgrades
v26.7.0
v26.6.0
v26.5.2
v26.5.1
v26.5.0
v26.4.0
v26.3.0
v26.2.1
v26.2.0
v26.1.0
v25.12.0
v25.11.0
v25.10.0
v25.9.0
v25.8.0
v25.7.1
v25.7.0
v25.6.1
v25.6.0
v25.5.0
v25.4.0
v25.3.1
v25.3.0
v25.2.1
v25.2.0
v25.1.0
v24.12.0
v24.11.0
v24.10.1
v24.10.0
v24.9.0
v24.8.0
v24.7.0
v24.6.0
v24.5.0
v24.4.0
v24.3.0
v24.2.0
v24.1.0
v23.12.0
v23.11.0
v23.10.0
v23.9.0
v23.8.1
v23.8.0
v23.7.2
v23.7.1
v23.7.0
v23.6.0
v23.5.0
v23.4.2
v23.4.1
v23.4.0
v23.3.2
v23.3.0
v23.2.9
v23.2.5
v23.1.12
v22.12.9
Labels
Clear labels
AI generated
API
bank sync
budgeting
bug
can’t replicate
dependencies
docker
documentation
electron
experimental feature
feature
feedback
goal templates
good first issue
help wanted
importers
maintenance
needs info
needs testing
needs triage
needs votes
openid
payees
pull-request
regression
reports
responsive
rules
schedules
server
✨ merged
split transactions
tech debt
tech-support
theme
transaction import
transaction reconciliation
transactions
translations
upstream
user interface
✅ approved
wontfix
Mirrored from GitHub Pull Request
No Label
bug
Milestone
No items
No Milestone
Projects
Clear projects
No project
No Assignees
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: github-starred/actual#983
Reference in New Issue
Block a user
Blocking a user prevents them from interacting with repositories, such as opening or commenting on pull requests or issues. Learn more about blocking a user.
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @crispybegs on GitHub (Mar 12, 2024).
Verified issue does not already exist?
Is this related to GoCardless, Simplefin or another bank-sync provider?
What happened?
my bank sync via gocardless works perfectly, but every day, when I open Actual, the Sync option is greyed out and in order to get it working again I need to clear cookies for the session and log in all over again. This happens every morning, on each device i use - desktop / laptop / mobile.
What am i getting wrong here?
What error did you receive?
sync button greyed out
Where are you hosting Actual?
Docker
What browsers are you seeing the problem on?
Chrome, Safari
Operating System
Mac OSX
@youngcw commented on GitHub (Mar 12, 2024):
what does the server status in the top right say when you cant sync?
@crispybegs commented on GitHub (Mar 12, 2024):
um, i can't seem to replicate the situation right now, but I seem to recall from last week when this first started happening that it was disconnected from the server. I can't recall the exact syntax of the message, but I can check tomorrow morning when it happens again.
@crispybegs commented on GitHub (Mar 12, 2024):
oh there we go
the server's not offline, obviously. If i clear the cache and log in again, it will be working
@youngcw commented on GitHub (Mar 12, 2024):
do you have anything tricky happening like auto clearing the browser cache or adding authentication in front of the server?
@MatissJanis commented on GitHub (Mar 12, 2024):
"Server offline" label is shown either if connection to the server cannot be established (i.e. no network access) or if the server is not accepting your auth token (you get this when logging in).
Check the network logs when opening the page - if it's auth issue you will see a failed API call (403 I think). If that's the case then something interesting is happening in your server instance. Something is dropping your auth table and recreating. Which is weird.. it might also mean your transaction changes are also being deleted from the server (check this by opening an incognito tab and logging in - do you see files on the server? Do this AFTER you see the "server offline" button but BEFORE re-logging into the server from your non-incognito window).
@crispybegs commented on GitHub (Mar 13, 2024):
thanks all. yes my actual instance is accessed via a cloudflare tunnel, which has a rule in front of it that requires my email address to receive a OTP to then gain access to actual.
However, i can always access the UI, it's just the server is marked as offline once i get there.
No browser cache clearing or anything like that. Also, this only started happenign recently. I've always had the same set up and it didn't used to do this, so I'm befuddled.
to add to this, every time I go through this process and log back in again from scratch, my preferences have been reset.. for example my dates are reset to MM/DD/YYY, even though I set them to DD/MM/YYYY every day
@shall0pass commented on GitHub (Mar 13, 2024):
Just a thought on what might be happening. There was a recent improvement to allow PWA support to work offline. If your authentication is failing in some way or of the PWA just can't see the server, the PWA would still work but as an offline application. Any settings that are only accessible when the server is connected wouldn't be available... which I believe includes secrets for bank sync integrations.
@crispybegs commented on GitHub (Mar 13, 2024):
hmm, although this is happening on my desktop & laptop?
@youngcw commented on GitHub (Mar 13, 2024):
are you leaving the web page open then coming back to it? It sounds like no, but just to be sure.
@jfdoming commented on GitHub (Mar 13, 2024):
I believe the offline PWA support that was added works whether or not you actually install the app. Maybe we need a setting toggle to disable offline support? Or somehow scope it only to installed apps
@youngcw commented on GitHub (Mar 13, 2024):
@jfdoming I feel like not allowing the offline mode unless it was actually installed as an app makes sense
@youngcw commented on GitHub (Mar 13, 2024):
I guess we should also look at putting in some info in the docs on opening up just the api endpoints
@crispybegs commented on GitHub (Mar 13, 2024):
no, opening fresh each day
@MatissJanis commented on GitHub (Mar 13, 2024):
bump: https://github.com/actualbudget/actual/issues/2456#issuecomment-1992522756
It's highly unlikely this is related to the PWA offline mode. My bet is on server misconfiguration causing the remote database to be wiped periodically. That's the only thing that might explain Actual auth tokens getting invalidated.
@crispybegs commented on GitHub (Mar 13, 2024):
could be, but i'm not sure what the misconfiguration might be. I did a very standard docker compose installation.
my compose is
that's it
@MatissJanis commented on GitHub (Mar 13, 2024):
There's two action items in here for you. Could you please do them and feed the information back to us?
@crispybegs commented on GitHub (Mar 13, 2024):
sorry, yes, I will, but i need to wait for it to happen again before i can do them as it's currently working fine after i logged in early this morning
@crispybegs commented on GitHub (Mar 13, 2024):
alrighty. so this just happened again.
looking at the dev console in chrome i can see this error
and there's also this
I also did your other request, logging in via an incognito window, but it was exactly the same as when I log in normally. I go through the cloudflare verification process, then log in to actual.. and everything's working but my date settings have been reverted to US formatting again (MM/DD/YYY).. so there's no difference in the experience of logging in incognito or not.
@MatissJanis commented on GitHub (Mar 14, 2024):
Ok, so here's what's happening:
The first request made from actual is to validate your auth token. This request then gets redirected to cloudflare because your cloudflare auth has expired. Because there are no CORS headers in cloudflare - actual is not able to read the API response. Thus it considers you to be "offline".
The first patch will be to add CORS headers to the cloudflare request so that actual could communicate with it. After that is done.. there might be other things that you would need to re-configure so the initial actual auth request is retriggered.
My recommendation would be to fix the cors headers and then see if thst makes it work. If it doesn't - please feel free to reach out to the folks on the community discord. Discord is a much better place for support.
As for not saving date format: yes, this is only stored locally. If you wipe the cache each day then also these settings get wiped.
Closing as this is not a bug report.
@crispybegs commented on GitHub (Mar 14, 2024):
aha thank you!
i found this section in the cloudflare applications for the access rules for my domain. Is it as simple as switching that on?
(sorry, i've never heard of CORS before so i have no idea if doing so is a security risk or something)
@MatissJanis commented on GitHub (Mar 14, 2024):
If you don't have much expertise here I would advise to use one of the recommended low-tech deployment methods: pikapods or fly.
Please use the community discord if you wish to seek further assistance about cloudflare configuration. The community is quite active there.
@mathisgauthey commented on GitHub (Feb 28, 2025):
Hey there, did you end up finding a working solution ? I do struggle with that one. I'm using Cloudflare Tunnel with access configured to send me an OTP by mail. I host actual behind my nginx proxy manager which manages the SSL cert from Cloudflare.
@crispybegs commented on GitHub (Feb 28, 2025):
I'm afraid not, i just live with the cookie clearing