Cannot delete a user after metadata encryption enabled

richarson · July 8, 2025, 5:11pm

Checklist
I have read intro post: https://community.passbolt.com/t/about-the-installation-issues-category/12

I have read the tutorials, help and searched for similar issues

I provide relevant information about my server (component names and versions, etc.)
OS: Alma Linux 9.5
Web server: nginx 1.20.1
Database: mysql 8.0.41
PHP: 8.2.28
Passbolt: 5.2.0 CE

I provide a copy of my logs and healthcheck

I describe the steps I have taken to trouble shoot the problem
I enabled Firefox’s dev console
I tried with these commands, the cleanup fixed some issues but the error persists:
/usr/share/php/passbolt/bin/cake passbolt healthcheck
/usr/share/php/passbolt/bin/cake passbolt cleanup
/usr/share/php/passbolt/bin/cake passbolt metadata share_metadata_key

I describe the steps on how to reproduce the issue
I’m trying to delete a user created previous to enabling metadata encryption and it fails with a blank page and JS errors in Firefox’s dev console:
‘TypeError: can’t access property “localeCompare”, e.metadata.name is undefined’ on vendors.js:2:646010
‘Uncaught (in promise) TypeError: can’t access property “localeCompare”, e.metadata.name is undefined’ on app.js:2:141899

I have the full logs but can’t attach them here, how can I get them to you?

cedric · July 8, 2025, 5:52pm

Thank you for the report, @richarson.
We’re aware of the issue (PB-43598) and have a fix scheduled for v5.3.1.
In the meantime, you can disable the user.

richarson · July 8, 2025, 6:13pm

Thank you for the prompt reply!

Unfortunately for me, it’s a user I have to recreate due to loss of the recovery kit.
Is there a way to at least change the email address so we can enroll the user again?

Worst case, I think I could enroll them with a temporary user/email and when we can recreate it, transfer all their passwords to the “new” user.

richarson · July 8, 2025, 6:21pm

Forgot to ask but, could I try to delete the user with the CLI tool?
https://github.com/passbolt/passbolt_cli

I dont’s see recent updates so I’m not sure if it’d work with current Passbolt versions anyway.

richarson · July 10, 2025, 11:07pm

Today I upgraded to 5.3.1 (server) and 5.3.0.0 (client) but I still get the same blank page and this in the dev console:

The message in spanish says the user cannot be deleted because it’s the sole owner of some shared resources, which should first be transferred to another user.

cedric · July 11, 2025, 6:39am

A fix is scheduled for the next browser extension, most probably v5.3.2 as v5.3.1 number was allocated to an API hotfix.

richarson · July 11, 2025, 2:17pm

Ah, ok, thank you!

Cheers!