ERR303: The number of active tokens for this user

Hi,
I’ve noticed since 3.11.2 and also for 3.11.3 this error in the “Action Detail” field of Audit section:
ERR303: The number of active tokens for this user

If Action fileld==“POST /validate/check” && Authentication field==“Accept” I see this error in the “Action Detail” field:ERR303: The number of active tokens for this user

Though all users have a policy to have only one token and no one tries to register new. Users only use 2fa to enter and in Audit we see this ERR303.

Looks like it’s programming mistake.
It’s not a cause of connection issues just an observation.

Hi, thanks for reporting the issue. It seems that some policies are executed in the wrong order which has no effect on the stuff they are actually doing, but causing the wrong message.

I’ve created an issue on gitHub: Wrong error message for max user token in audit log · Issue #4434 · privacyidea/privacyidea · GitHub