FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login
    1. Home
    2. Tags
    3. application
    Log in to post
    • All categories
    • danD

      Unsolved allow users to register for any application but not create user accounts

      Q&A
      • registration application login • • dan
      2
      0
      Votes
      2
      Posts
      77
      Views

      danD

      This is possible in a couple of ways.

      First, to allow users to register for an application on login, you need to turn on self-service registration. From the docs:

      When you enable self-service registration for an application and a user who does not have a registration for that application successfully logs in to that application, the user will automatically be registered for that application, and have a registration added.

      Then the question becomes, how can you disable the hosted login pages self-service registration form?

      To do so, take the following steps:

      update your theme to remove the link to the "Don't have an account? Create one" link from any pages, including the login page. You can also remove all the content from the registration themed page and replace it with not implemented or similar. However, a sinister user may still be able to post to the register endpoint and create a user if you are self-hosting, block access to the /register endpoint using a proxy if you are not self-hosting, prevent self-service registration by adding an encrypted secret value to all user accounts you create via the API. Then, create self-service registration validation lambda which will examine the user object. If the user object comes through without the secret value, fail the registration. Otherwise allow it through because it is a user who has logged in.

      The self-service lambda may not fire unless there are required fields on the registration form, but that behavior is undocumented and may change.

    • A

      FusionAuth not registering user in multiple Applications (GO-Client)

      General Discussion
      • golang fusionauth registrations application • • arihantverma52
      2
      0
      Votes
      2
      Posts
      2.2k
      Views

      A

      Solution:

      https://github.com/FusionAuth/go-client/issues/48

    • A

      Unsolved Link in Email verification not working first time

      Q&A
      • email templates verification user creation application • • adam 0
      3
      0
      Votes
      3
      Posts
      2.0k
      Views

      S

      We have the exact same issue. If this was solved (hopefully) could you please provide a brief description on the fix?
      Thanks!

    • F

      Unsolved Custom theme deployment between environments

      Q&A
      • theme deployment application api docs • • fred.fred
      2
      0
      Votes
      2
      Posts
      6.8k
      Views

      danD

      @fred-fred said in Custom theme deployment between environments:

      It looks like we can transport with the API using Theme Update Endpoints and sharing environment API keys so one environment can see the next environment to copy the themes over.

      Yes, that's what I'd recommend. You could have different API keys for each environment and have the script that promotes the theme pull the API key from a secrets store. Make sure you limit the API key to the themes endpoint.

      You also might be interested in this post: https://fusionauth.io/community/forum/topic/1306/parameterizing-themes which indicates how you can have the same theme files point to different resources in staging/prod/dev/etc.

    • danD

      Can I temporarily disable logging into an application?

      Q&A
      • login application • • dan
      2
      0
      Votes
      2
      Posts
      1.2k
      Views

      danD

      Yes, you can disable one or more applications.

      This operation can be reversed, and while an application is disabled, login requests to fail with a 400 error for all users.

      Navigate to "Applications -> Deactivate (gray button)" to disable/deactivate an application.

      To re-enable it from the admin UI, you'll need to 'view inactive', which is the button next to the green '+' sign on the list applications page.

    • danD

      Custom themes for an application

      Q&A
      • theme application • • dan
      3
      0
      Votes
      3
      Posts
      1.9k
      Views

      danD

      @dan This was delivered in 1.27.0

    • danD

      FusionAuth application id

      Q&A
      • application ids • • dan
      2
      0
      Votes
      2
      Posts
      1.1k
      Views

      danD

      Yes, it's the fusionauth application id, defined here: https://github.com/FusionAuth/fusionauth-java-client/blob/master/src/main/java/io/fusionauth/domain/Application.java

    • danD

      Search for users by application

      Q&A
      • search user search application • • dan
      2
      0
      Votes
      2
      Posts
      1.3k
      Views

      danD

      You should be able to go the user's tab and then expand the 'advanced' section and select a given application.

      See this screenshot:

      user search with 'advanced' section expanded

    • danD

      How many applications and tenants can I have in FusionAuth?

      Q&A
      • limits performance tenant application • • dan
      6
      0
      Votes
      6
      Posts
      3.6k
      Views

      danD

      Ah, yes, thanks for explaining.

      Yes

      You have two options

      use the API to integrate with the current login/reg flow with FusionAuth. This lets you keep your existing html pretty much untouched, you're just calling out to FusionAuth instead of the database. remove them and use the FusionAuth provided pages with OIDC. This lets you use the theming and localization capabilities of FusionAuth, including super simple social signon.

      It's your choice based on what your needs are, either way will work.

      I'd only recommend using SAML if you have an application which only supports SAML, not OIDC.

      You'll also want to make sure that when someone registers with one of your applications in FusionAuth, they register with all three. I'd probably use a webhook to ensure that.

    • danD

      Is there a way to force users to use two factor authentication?

      Q&A
      • two factor configuration application • • dan
      2
      0
      Votes
      2
      Posts
      3.7k
      Views

      danD

      Not with a FusionAuth policy, but you could enforce it just by checking the user during login, as twoFactorEnabled is an attribute of the user.

      There's also this github issue which you may want to vote up: https://github.com/FusionAuth/fusionauth-issues/issues/763

    • danD

      How do you assign a theme to an application?

      Q&A
      • theme faq application • • dan
      5
      0
      Votes
      5
      Posts
      5.9k
      Views

      danD

      @fred-fred

      Hiya,

      In addition to what @maciej-wisniowski suggested, if you have a paid license you can now have application specific themes (one theme per application; if no application theme is specified, it defaults to the tenant).

      You can see how that works in the sandbox environment (sandbox.fusionauth.io). I believe that feature landed in 1.27.0.

      You can buy a licensed edition here.