@mark-robustelli No worries, we do have a working setup now after a slew of theme tweaks. That said there is still an outstanding question and a possible bug (both low priority).

The question: What happened to the ability to complete an oauth authentication flow by POSTing a code to /oauth2/passwordless? That worked in 1.48.3 but not in 1.55.1.

The potential bug: Why does a GET call to /oauth2/passwordless/<invalid code> redirect the user to the browser confirmation page (even when the request is from the same browser) instead of an invalid code page?

@aditya-badayalya glad you got it working.

@stevediaz Seems odd that an upgrade would delay the redirection. What browser are you using? Have you tired using another? Have you used something like the Chrome network monitor to narrow down where the delay is happening?

@chee Who are your DNS records with? Are those configured correctly?

I just took another look and jwt.aud may get you what you need in both instances as well.

Thanks for your answer. I got it.

I think you should implement custom registration or login logic using FusionAuth's webhooks or API. For example, you can check the application context during login and prevent users from being registered or authenticated in an application they are not supposed to access.

@paulp It will only work with Outlook if you disable all security features. Sure you can manually re-apply security features one-by-one but that's just madness. There's not even an option to disable security for an individual inbox, it has to be organisation wide 😵

Either Outlook really don't want you using SMPT Auth or they just can't support this. Went with AWS in the end.

Thank you for share this information............

@randall Glad you were able to figure it out.

Hiya @maciej-wisniowski !

We do not use Apache Struts in FusionAuth.

Hope that helps.

@pacheco-eaguiar maybe you can use the Login API in the backend to verify user's credentials: https://fusionauth.io/docs/apis/login

@juan Thanks for sharing!

@teyog10322 Visual Studio 2022, how about you?

Reproduction steps:

Go to Application page Click on add symbol (+) Fill in fields: name: test tenant: <any> OAuth tab -> Authorized redirect URLs: https://example.com/v2/oauth OAuth tab -> Logout URL: https://example.com/logout Click on save symbol

Note: This is all arbitrary data in these fields. I'm finding that it I need to fill in the "name" and "tenant" fields first, save the application and then go back in to enter the OAuth details.

@jw-0 said in React SDK example - nothing in the userInfo but tid and sub:

I'm sure I'm doing something stupid here but I can't work out what I haven't done.

I am using the changebank React SDK example as my test harness, using the community version of FusionAuth for now, hosted under docker
I've created a new tenant, a new app and then a new user.
I can login using this new user into the app but the userInfo structure has nothing in it other the the use sub and the tid.

Config is below

const config: FusionAuthProviderConfig = {
clientId: "31067471-23fc-4634-afa9-c049ff4f0a86",
redirectUri: "http://localhost:5173", slope run

serverUrl: "http://localhost:9011/",
shouldAutoFetchUserInfo: true,
shouldAutoRefresh: true,
onRedirect: (state?: string) => {
console.log(Redirect happened with state value: ${state}"});
}
};

Example code is:
In main.tsx
const { isLoggedIn, isFetchingUserInfo, userInfo } = useFusionAuth();

In the AccountPage.tsx I have:

<p>tid {userInfo?.tid}</p> <p>sub {userInfo?.sub}</p> <p>roles {userInfo?.roles}</p> <p>email {userInfo?.email}</p>

The roles and email fields are always null

Any ideas?

In FusionAuth, ensure that the user claims are set up correctly. Go to the tenant settings and check the "User Claims" section to confirm that the necessary claims (like email, name, etc.) are included. Make sure that your application is requesting the correct scopes during the authentication process. Common scopes include openid, profile, and email. Verify that these scopes are included in your authentication request. Review the ChangeBank React SDK example to ensure it correctly handles the userInfo endpoint. There may be specific configurations or API calls that need to be made to retrieve additional user data.

@sunita65rwt What kind of integration are you working on? Can you narrow down your request in terms of what you are trying to accomplish? What frameworks are you working with? If you can clarify a bit, it may be easier to help.

Not the best way of doing that but found that you could inject some stuff in metaData.device.name

<input type="hidden" name="metaData.device.name" value="_${request.getParameter('someparam')}" />

I can later retrieve it and parse it and assign it

[#assign someparam=request.getParameter("metaData.device.name")?split("_")?last]