Issue on first boot: "Access denied for user 'passbolt'@"

Checklist
I have read intro post: About the Installation Issues category
I have read the tutorials, help and searched for similar issues
I provide relevant information about my server (component names and versions, etc.)
[XI provide a copy of my logs and healthcheck
I describe the steps I have taken to trouble shoot the problem
I describe the steps on how to reproduce the issue

Hi guys, little out of ideas here regarding this issue, I’m trying to get passbolt installed and running, but in the logs I keep getting this error, the interface works (as In can see the login page), but I can’t sign in or create a user.

I tried deleting the maria_db folder and recreating the docker, initially in my yml file I had all the passords changed, I then reverted them to their defaults and still same issue (figured maybe they were embedded and would have to change them after creating the admin user or wtv).

At one point I thought my .env was no good, so I put the passwords in the compose file directly. same issue.

Any help would be appreciated.

Here’s my config docker-compose:


services:
db:
image: mariadb:10.11
restart: unless-stopped
environment:
MYSQL_RANDOM_ROOT_PASSWORD: true
MYSQL_DATABASE: ${MYSQL_DATABASE}
MYSQL_USER: ${MYSQL_USER}
MYSQL_PASSWORD: ${MYSQL_PASSWORD}
networks:
backend:
volumes:
- /home/xyz/docker/config/passbolt/maria_db:/var/lib/mysql

passbolt:
image: passbolt/passbolt:4.9.1-1-ce
restart: unless-stopped
depends_on:
- db
environment:
APP_FULL_BASE_URL: https:// passbolt.wtv .com (spaces added due to 2 link limit)
DATASOURCES_DEFAULT_HOST: db
DATASOURCES_DEFAULT_USERNAME: ${DATASOURCES_DEFAULT_USERNAME}
DATASOURCES_DEFAULT_PASSWORD: ${DATASOURCES_DEFAULT_PASSWORD}
DATASOURCES_DEFAULT_DATABASE: ${DATASOURCES_DEFAULT_DATABASE}
EMAIL_DEFAULT_FROM_NAME: Passbolt
EMAIL_DEFAULT_FROM: xxx@gmail.com
EMAIL_TRANSPORT_DEFAULT_HOST: smtp. gmail .com (spaces added due to 2 link limit)
EMAIL_TRANSPORT_DEFAULT_PORT: 587
EMAIL_TRANSPORT_DEFAULT_USERNAME: ${EMAIL_TRANSPORT_DEFAULT_USERNAME}
EMAIL_TRANSPORT_DEFAULT_PASSWORD: ${EMAIL_TRANSPORT_DEFAULT_PASSWORD}
EMAIL_TRANSPORT_DEFAULT_TLS: true
env_file: .env
volumes:
- gpg_volume:/etc/passbolt/gpg
- jwt_volume:/etc/passbolt/jwt
command:
[“/usr/bin/wait-for.sh”, “-t”, “0”, “db:3306”, “–”, “/docker-entrypoint.sh”]
labels:
traefik.enable: “true”
traefik.http.routers.passbolt-http.entrypoints: “http”
traefik.http.routers.passbolt-http.rule: “Host(passbolt.wtv.com)”
traefik.http.routers.passbolt-http.middlewares: “SslHeader@file”
traefik.http.routers.passbolt-https.middlewares: “SslHeader@file”
traefik.http.routers.passbolt-https.entrypoints: “https”
traefik.http.routers.passbolt-https.rule: “Host(passbolt.wtv.com)”
traefik.http.routers.passbolt-https.tls: “true”
traefik.http.routers.passbolt-https.tls.certresolver: “cloudflare”
networks:
backend:
ports:
- 80:80
- 443:443

volumes:
database_volume:
gpg_volume:
jwt_volume:

networks:
backend:
external: true

When I checked the logs, this is the error I saw.

Here’s the error from the docker container log:
passbolt-1 | // _,///./_//_/
passbolt-1 |
passbolt-1 | Open source password manager for teams
passbolt-1 | -------------------------------------------------------------------------------
passbolt-1 | Running baseline checks, please wait…
db-1 | 2024-10-02 1:26:31 4 [Warning] Access denied for user ‘passbolt’@‘172.20.0.5’ (using password: YES)
passbolt-1 | The application is not able to connect to the database.

passbolt-1 | // _,///./_//_/
passbolt-1 |
passbolt-1 | Open source password manager for teams
passbolt-1 | -------------------------------------------------------------------------------
passbolt-1 | -------------------------------------------------------------------------------
passbolt-1 | Running migration scripts.
passbolt-1 | -------------------------------------------------------------------------------
passbolt-1 | using migration paths
passbolt-1 | - /etc/passbolt/Migrations
passbolt-1 | using seed paths
db-1 | 2024-10-02 1:26:31 5 [Warning] Access denied for user ‘passbolt’@‘172.20.0.5’ (using password: YES)
passbolt-1 | 2024-10-02 01:26:31 error: [InvalidArgumentException] There was a problem connecting to the database: SQLSTATE[HY000] [1045] Access denied for user ‘passbolt’@‘172.20.0.5’ (using password: YES) in /usr/share/php/passbolt/vendor/robmorgan/phinx/src/Phinx/Db/Adapter/PdoAdapter.php on line 98
passbolt-1 | Caused by: [PDOException] SQLSTATE[HY000] [1045] Access denied for user ‘passbolt’@‘172.20.0.5’ (using password: YES) in /usr/share/php/passbolt/vendor/robmorgan/phinx/src/Phinx/Db/Adapter/PdoAdapter.php on line 86
db-1 | 2024-10-02 1:26:31 6 [Warning] Access denied for user ‘passbolt’@‘172.20.0.5’ (using password: YES)
passbolt-1 | 2024-10-02 01:26:31 error: Could not connect to Database.
db-1 | 2024-10-02 1:26:31 7 [Warning] Access denied for user ‘passbolt’@‘172.20.0.5’ (using password: YES)
passbolt-1 |
passbolt-1 |

I found my issue…

For anyone interested, I had pre created the volumes defined in my yml files manually, so the issue was permission accesses.

After making the forum post, I deleted all the folders, and recreated the container and it all worked out since all folders were created by the system root had all the right permissions.

Hope this helps anyone else having similar issues.