5.5.4 is our version.
>> the horde execution context from earlier where you were running this as a service (presumably under the service account). re: “Okay, so because it is running as a service account…”.
okay, so I made a “service account” on the horde server, but this doesn’t sound like what you meant. it is what i was wondering, but sounds not supported or irrelevant. then in my quote about “running as a service account” i mean the windows service and i think you meant that as well, so all good now.
>> I haven’t seen this error in the log before. Are there any other items in that log that would highlight what file is missing?
so this was a misleading message. the actual error was a failure to decrypt the oidctoken.dat file. I managed to fix it by setting CryptProtectFlags flags = CryptProtectFlags.CryptprotectLocalMachine;
in 2 places in WindowsTokenStore.cs. That allowed me to run the interactive login on my user account and copy the token to the service account appdata and all is well.
In no instance do i see the UE_HORDE_TOKEN being set though. I think it always pulls it from the refresh or auth token stored in that encrypted store, and when that doesn’t exist it tries to pop the browser to login.
I still really need to understand what setting or config would allow a token to be injected into the environment prior to this step, because none of the working flows I’ve seen do that.