Summary

On February 20th, 2025, the Dune web application experienced a 12-minute outage affecting all authenticated users. Users were logged out and unable to log back in.

Incident Details

• Start Time: 2025-02-20 16:27 UTC
• End Time: 2025-02-20 16:39 UTC
• Duration: 12 minutes
• Impact: All users were logged out and unable to log back in

What Happened

During the consolidation of authentication systems between Dune and Sim, a code refactoring error was accidentally deployed to production. This caused the API endpoint for user session refreshes to fail.

Timeline

• 16:27: Faulty code deployed, causing user logouts
• 16:35: Issue detected and incident response initiated
• 16:39: Service restored through version rollback

Root Cause

The incident occurred when code refactoring introduced an undeclared variable in the codebase. Our automated safeguards missed this because the variable was named origin, which exists as a global variable in certain JavaScript contexts.

Resolution

We restored service by rolling back the API to its previous version, which restored login functionality.

We have implemented additional tests to prevent similar issues in the future.