Q&A

• 

  What open source and commercial packages are known to work with FusionAuth?
  open source commercial compatibility packages • • dan  

  5
  0
  Votes
  5
  Posts
  64
  Views

  H

  Directus Open-Source Headless CMS & API

  Directus is an open-source tool for managing content across all your omni-channel digital experiences. (Directus homepage : https://directus.io/ )

  FusionAuth Provider for OAuth 2.0 Client

  This package provides FusionAuth OAuth 2.0 support for the PHP League's OAuth 2.0 Client.

  https://github.com/jerryhopper/directus-oauth2-fusionauth

• V

  Identity Provider with no email?
  • valentin.alt.raltchev99  

  15
  0
  Votes
  15
  Posts
  44
  Views

  B

  @dan here's the message:

  An email address was not provided for the user. This account cannot be used to log in, unable to complete this login request.

  debug is enabled, but I have no idea where to look for logs - under docker the log that is seen in e.g. Portanier is only showing some older warnings:

  WARNING: Please consider reporting this to the maintainers of org.apache.ibatis.reflection.Reflector WARNING: Use --illegal-access=warn to enable warnings of further illegal reflective access operations WARNING: All illegal access operations will be denied in a future release

  Another interesting thing: of two of my friends who tried it, one was able to log in, and Apple even asked him if he wanted to hide his real email address. The other one got the same message that I'm getting.

• S

  Is there a way to send the user to the hosted signup or login form when opening?
  • shanon  

  3
  0
  Votes
  3
  Posts
  7
  Views

  

  Hiya,

  I think you are asking: "can I show someone a login link if I know they have an account and otherwise show a registration link"?

  If so, I believe this is best done in your application. Drop a cookie hasLoggedIn once the user has logged in. Make it persistent and don't remove it on log out. Then, in your application code, if the user has a hasLoggedIn cookie but isn't currently logged in, display a sign in link.

  There are three possibilities:

  the browser has never visited your site before (the user could have, but could have removed their cookies or be on a new computer--no way to know that). You know this because of the absence of the hasLoggedIn cookie. Show a registration link. the browser has visited your site before and is logged in. You should show neither reg nor login, but you'll probably have a session or cookie indicator that they have signed in. the browser has visited your site before and is not logged in (which you know because of the hasLoggedIn cookie). You should show login, with a link to registration (because it could be someone else on the user's computer who wants to sign up).
• M

  Social login with Flutter App
  • marco  

  4
  0
  Votes
  4
  Posts
  9
  Views

  

  Ah, makes sense.

  I don't think you want to use a webview or an ios/android token. Per OAuth 2.0 for Native Apps, the recommended solution is to use the system browser:

  For authorizing users in native apps, the best current practice is to
  perform the OAuth authorization request in an external user-agent
  (typically the browser) rather than an embedded user-agent (such as
  one implemented with web-views).

  You can see how this was implemented in React Native here: https://fusionauth.io/blog/2020/08/19/securing-react-native-with-oauth and here https://github.com/fusionauth/fusionauth-example-react-native

• S

  How long does the email template changePasswordId id last before it expires? How can invitation expiration be implemented?
  • stephen  

  4
  1
  Votes
  4
  Posts
  13
  Views

  

  @stephen said in How long does the email template changePasswordId id last before it expires? How can invitation expiration be implemented?:

  Is that the only way to resend that invite email?

  Ah, sorry I wasn't clear. I'm not sure you want to use the FusionAuth email templates. If you send the email yourself you'll have more granularity and control.

• 

  Password complexity rules?
  complexity password rules • • dan  

  2
  0
  Votes
  2
  Posts
  3
  Views

  

  Head over to the admin, and click tenants.

  There you will find your default tenant. edit that to change your password strength etc.

  (You can also do that for multiple tenants if you have them or via the Tenants API.)

• S

  This topic is deleted!
  • strix  

  1
  0
  Votes
  1
  Posts
  2
  Views

  No one has replied

• A

  Token type?
  jwt python access tokens fusionauth • • alimirloohome2  

  3
  0
  Votes
  3
  Posts
  9
  Views

  A

  Seems like the library I used is opinionated. Thanks for the hints.

• V

  Is this a common Dusion Auth error: Unable to decode incoming request
  • vrademacher  

  4
  0
  Votes
  4
  Posts
  4
  Views

  

  @vrademacher ah, great, that wasn't clear to me!

  Then while the forum and community support might be able to help, I'd recommend filing a support ticket by logging into account.fusionauth.io and going to the support tab.

  Feel free to reference this forum post if you'd like.

  If you'd like to continue to debug this issue here, can you please give me a bit more info?

  It'd be great to know:

  the version of fusionauth where you are encountering the issue the login flow (login api, oauth authorization code grant, etc) the browser the customer is using anything unique about the customer as opposed to other customers that are not having this issue
• 

  Are FusionAuth access tokens always JWTs?
  jwt access tokens • • dan  

  2
  0
  Votes
  2
  Posts
  2
  Views

  

  Yes. While OAuth2 access tokens aren't guaranteed by the spec to be JSON web tokens, in FusionAuth access tokens are always JWTs.

• A

  When is `introspect` endpoint needed?
  • alimirloohome2  

  6
  0
  Votes
  6
  Posts
  8
  Views

  A

  @robotdan Also, it was actually me who opened the mentioned issue.

• M

  Gatsby + Hasura + FusionAuth + KintoHub (My Dream Stack)
  fusionauth gatsby gatsbyjs hasura kintohub • • mrstudyfirst  

  8
  0
  Votes
  8
  Posts
  30
  Views

  F

  yeah, pretty simple really, if you want to try it yourself before my tutorial is out, try using the hasura cloud + Auth0 tutorial on Hasura's site, and use the lessons from that to use it with fusionauth.

• 

  FusionAuth application id
  application ids • • dan  

  2
  0
  Votes
  2
  Posts
  2
  Views

  

  Yes, it's the fusionauth application id, defined here: https://github.com/FusionAuth/fusionauth-java-client/blob/master/src/main/java/io/fusionauth/domain/Application.java

• B

  Telegram bot user authentication
  • bogorad  

  8
  0
  Votes
  8
  Posts
  16
  Views

  

  Awesome. Just wanted to make sure you weren't expecting to be able to encrypt anything in the browser and keep it secret .

• 

  How can I sync my RSA or Elliptical keypairs between environments?
  keys rsa elliptical keypair public private • • dan  

  2
  0
  Votes
  2
  Posts
  1
  Views

  

  If you need to keep everything in sync between your dev, staging and production systems, I believe the best way to accomplish that is to create the key-pair outside of FusionAuth and use the “Import RSA key pair” functionality.

  If you are using the UI, you can find that under "Settings -> Key master". The button in the upper right hand corner lets you select between the different options:

  You can of course also use the API to import the keys: https://fusionauth.io/docs/v1/tech/apis/keys

• S

  Performance issues even with a 8 Core + 32 gigs.
  performance java • • sswami  

  21
  0
  Votes
  21
  Posts
  54
  Views

  

  Thanks @sjswami , this duplicate ids issue is now resolved in 1.19.7. Appreciate you letting us know about it: https://github.com/FusionAuth/fusionauth-issues/issues/890

• T

  Revalidate on login always forcing password reset
  • tom.hynard  

  5
  0
  Votes
  5
  Posts
  13
  Views

  

  @tom-hynard if you update to 1.19.7, this bug should be fixed: https://github.com/FusionAuth/fusionauth-issues/issues/880

• 

  IIS as a reverse proxy?
  proxy iis reverse • • dan  

  2
  0
  Votes
  2
  Posts
  2
  Views

  

  We don't have any IIS guides for a proxy, but this guide looks like it would work: https://docs.microsoft.com/en-us/iis/extensions/url-rewrite-module/reverse-proxy-with-url-rewrite-v2-and-application-request-routing

  The key is that version 1.19.x of FusionAuth is completely stateless so the proxy can round-robin and no session pinning is required. If you are using a version of FusionAuth before 1.19, you'll need to pin your session to ensure that you can log into the administrative interface.

• M

  Fusionauth will work in mysql enviroment?
  • muthu.tvg  

  3
  0
  Votes
  3
  Posts
  4
  Views

  M

  @dan Thanks for your reply

• M

  Not able to install fusion Auth in my local wamp server windows based machine
  • muthu.tvg  

  4
  0
  Votes
  4
  Posts
  12
  Views

  

  What version of mysql are you running?

  You might want to check the section on mysql and unicode here as that has caused problems for others: https://fusionauth.io/community/forum/topic/243/installation-problem/15