I have set up a staging instance with Qubes. Everything seems to work, except that I am unable to authenticate to the journalist interface. After adding an admin account on the App Server, and successfully loading the ATHS for the journalist interface, the form still fails to authenticate me with my credentials. I am shown a Login Error instructing me to wait until my 2FA code changes before trying again.
Details
I created an admin account with
$ python manage.py add-admin
on the App Server VM, as described here. I followed the prompts, using TOTP for 2FA and declining HOTP. There was no error reported from the manage script. Once it was done, I loaded the journalist interface successfully and entered the information into the form, but the authentication still fails. (I also tried creating a non-admin user, and I had the same problem).
Maybe relevant: To access the journalist interface ATHS I created a Debian AppVM, installed the latest stable version of the Tor Browser Bundle on it, and set it up to access the ATHS as described here from the line beginning “To use the Journalist Interface.” To copy install_files/ansible-base/app-journalist.auth_private
from sd-dev
to the Debian VM, I used qvm-copy
as in the Whonix instructions. I am able to access the journalist interface fine from the Debian VM once all this was done, but I am not able to authenticate to it, as I mentioned. Is it possible that I must create a Tails VM instead of the Debian one I’m using?