FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login
    1. Home
    2. beezerk
    B
    • Profile
    • Following 0
    • Followers 0
    • Topics 2
    • Posts 2
    • Best 0
    • Controversial 0
    • Groups 0

    beezerk

    @beezerk

    0
    Reputation
    1
    Profile views
    2
    Posts
    0
    Followers
    0
    Following
    Joined Last Online
    beezerk Unfollow Follow

    Latest posts made by beezerk

    • MFA is forced also on Identity Provider Users

      Hey,

      we're activated MFA for all applications on the tenant level (Required. A challenge will be required during login. A user will be required to configure 2FA if no eligible methods are available). From my understanding MFA should only be enforced when a user is registered directly in FusionAuth. So if a user comes from an identity provider MFA should be bypassed. However it seems to be not the case for us. We (in the company, so internal users) use Microsoft as an identity provider with OIDC, but all the time the users come back to FusionAuth it asked for the MFA. We have the same scenario for a client from us which also uses a Microsoft OIDC identity provider and they are also forced to set MFA.

      We first thought its just a temporary issue so we manually removed the configured MFA from the user. But it reappears all the time.

      Is this a known bug or are we doing something wrong? Any help is highly appreciated. Currently we are at version 1.46.0. I know that there are newer versions but i couldn't find anything MFA related in the changelogs.

      posted in General Discussion
      B
      beezerk
    • Redirect user back to application after email verification

      Hey, im just wondering if its possible to redirect the user back to the application after the email verification. Right now its like this:

      • User goes to my application foo.bar.com
      • User gets redirected to fusionauth login
      • User registered a new account
      • User clicks on verification button in email
      • User lands on dead page saying something like "Your email is verified".

      Can't i pass the redirect param or the state i have when the user gets redirected to the login to the register page and from there to the verification mail? So on the last page i can redirect the user back to where he/she initial came from.

      Thanks for any advice.

      posted in Q&A
      B
      beezerk