Users cannot log in with "Drupal\Core\Http\Exception\CacheableAccessDeniedHttpException: The 'access user profiles' permission is required and the user must be active"

Open on Drupal.org →

Created on 12 August 2021, about 3 years ago

Updated 26 July 2024, 3 months ago

Problem/Motivation

Upgrading from Drupal 8.9.17 to Drupal 9.2.3
Unable to login either via /user/login or with the magic url from drush uli. Logs contain an error as follows:

Path: /user/1465604. Drupal\Core\Http\Exception\CacheableAccessDeniedHttpException: The 'access user profiles' permission is required and the user must be active. in Drupal\Core\Routing\AccessAwareRouter->checkAccess() (line 117 of /Users/localdev/hosts/localdev-www/web/core/lib/Drupal/Core/Routing/AccessAwareRouter.php).

This message is erroneous in that the user IS logged and IS an admin.

Repro

I've started from production 8.9.17 and from there logged in as an admin on Firefox
Then, I've switched the branch to 9.2.3 code, did the usual database update, cache clear, config import, etc.

In Chrome, I point to the local URL and the website loads as expected (not logged in). Attempting either login via the normal /user/login URL or via the magic token from drush uli, I get the error described above

Back on the Firefox browser, I'm still able to load the website now with Drupal 9.2.3 and still logged in as the admin user.

💬 Support request

Status

Active

Version

11.0 🔥

Component

Last updated about 9 hours ago

Maintained by
🇺🇸United States @effulgentsia
🇬🇧United Kingdom @catch
🇬🇧United Kingdom @alexpott
🇦🇺Australia @larowlan
🇺🇸United States @bnjmnm
🇫🇷France @nod_
🇪🇸Spain @ckrina
🇬🇧United Kingdom @justafish

Created by

🇺🇸United States TMWagner

Live updates comments and jobs are added and updated live.

Bug Smash Initiative

Incomplete comments

Sign in to follow issues

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

Comment over 1 year ago →
🇺🇸United States twfahey
Ran into this locally - I was using `drush uli` to jump into a local copy of the site. Just for context, I was using Docksal locally, my site was fully functional on Pantheon, no issues using `drush uli`, but `fin drush uli` (Docksal's implementation to run a drush command on my container) on my locally was sending me to an "Access denied" page - I cleared cookies for my local site, in this case `mysite.docksal.site`, and voila! I am back online. I understand this probably won't help a ton with an actual fix, but my primary hope here is to aid any future devs that might have found their way here, and offer a workaround solution.
Comment 3 months ago →
🇳🇱Netherlands florisg
This is a really bad way of notifying the admin of permission errors, experienced the same today with group and domain access drupal 10 website.
After configuring the permissions properly no more errors shown.

Related #3213029 #3251815 #3168773 #3166208 #3166208

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024