Navigation

    FusionAuth
    • Login
    • Search
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    1. Home
    2. Tags
    3. email
    Log in to post
    • All categories
    • A

      Email Send exception while calling the /registration API
      General Discussion • email registrations user creation verification • • apeksha.barhanpur

      1
      0
      Votes
      1
      Posts
      236
      Views

      No one has replied

    • A

      Unable to send email via JavaMail Prime Messaging Exception
      General Discussion • email settings email templates • • apeksha.barhanpur

      6
      0
      Votes
      6
      Posts
      398
      Views

      joshua

      @apeksha-barhanpur

      My apologies, I mistakenly believed you had a support plan with FusionAuth (let me know if I am mistaken).

      Regarding your question --

      Have you had a chance to review the troubleshooting guide that we publish for email?
      https://fusionauth.io/docs/v1/tech/admin-guide/troubleshooting#troubleshooting-email

      Lastly, a good tip is to remove FusionAuth completely from the email equation by using SWAKS. SWAKS will complete an email exchange with just your email provider credentials (thereby removing FusionAuth from the equation). If SWAKS fails, then would offer good troubleshooting information.
      http://www.jetmore.org/john/code/swaks/

      Thanks,
      Josh

    • dan

      Copied tenant, email can't be sent?
      Q&A • email tenants • • dan

      2
      0
      Votes
      2
      Posts
      172
      Views

      dan

      A couple of things:

      https://fusionauth.io/docs/v1/tech/troubleshooting/#troubleshooting-email has troubleshooting tips worth checking out.

      The UI copy doesn't copy the SMTP password, so double check that as well.

    • dan

      Have a different email address sent to some SPs vs others
      Q&A • saml email • • dan

      2
      0
      Votes
      2
      Posts
      173
      Views

      dan

      You want to look at https://fusionauth.io/docs/v1/tech/lambdas/samlv2-response-populate/ This can update the email/nameId before it is sent over to the special SP.

      You will want to create a separate application and set the Response Populate Lambda to the lambda which does this transformation. This can be done via the UI as illustrated here: https://fusionauth.io/docs/v1/tech/samlv2/

    • dan

      Email or phone number to login?
      Q&A • phone number username email login • • dan

      2
      0
      Votes
      2
      Posts
      271
      Views

      dan

      Yes. That’s how it currently works.

      We have on the roadmap a more flexible identity system but don't have a current timeline for implementation. Here's the tracking issue: https://github.com/FusionAuth/fusionauth-issues/issues/1

    • dan

      "535 Incorrect authentication data" when sending email
      Q&A • email error • • dan

      2
      0
      Votes
      2
      Posts
      760
      Views

      dan

      Ensure you are not using a reply address from @fusionauth.io; if you are this will fail our DMARC policy.

      You don’t necessarily want to remove this reply address, but it should not be using our email domain. Instead it should be an address that belongs to your organization, such as no-reply@example.com. (Or, even better: customersupport@example.com--I hate when I get an email I can't reply to, myself.)

      Each email template also has the option to override that default value with a different value. So you may also want to audit each email template to ensure if it is using a different From address, it is also owned by your domain.

    • dan

      Email verification security hole?
      Q&A • email verification security • • dan

      2
      0
      Votes
      2
      Posts
      195
      Views

      dan

      If you are using email verification, you can check this user state within your own app. (So, don't allow the attacker to access anything until their email address has been verified.)

      In version 1.27.0 you can configure a gated login flow when the user is not verified (this is a 'reactor' feature requiring a paid license). This will enforce email verification before we even redirect to your app. You can then also configure FusionAuth to delete users after N number of days if the user has not verified their email address. This can assist with build up of accounts that are not actually in use.

    • dan

      Unique usernames but not unique emails
      Q&A • username email uniqueness • • dan

      2
      0
      Votes
      2
      Posts
      398
      Views

      dan

      The recommended course of action is to store the email in the user.data.email field, which is not required to be unique but is still used for activities like 'forgot password' emails. Leave the user.email field blank and use user.username.

      That should work. Support for user.data.email was removed in 1.26 and added back in 1.27.2, so avoid version 1.26.* and 1.27.0 and 1.27.1.

    • dan

      I want to send email from my docker image
      Q&A • email docker • • dan

      2
      1
      Votes
      2
      Posts
      672
      Views

      dan

      I end up using a docker image of mailcatcher.

      I use the default docker-compose.yml, but use this docker-compose.override.yml:

      version: '3' services: mailcatcher: image: yappabe/mailcatcher ports: - "1025:1025" - "1080:1080" networks: - mailcatcher search: image: docker.elastic.co/elasticsearch/elasticsearch:7.8.1 environment: cluster.name: fusionauth bootstrap.memory_lock: "true" discovery.type: single-node FUSIONAUTH_SEARCH_MEMORY: ${FUSIONAUTH_SEARCH_MEMORY} ES_JAVA_OPTS: ${ES_JAVA_OPTS} # Un-comment to access the search service directly # ports: # - 9200:9200 # - 9300:9300 networks: - search restart: unless-stopped ulimits: memlock: soft: -1 hard: -1 volumes: - es_data:/usr/share/elasticsearch/data fusionauth: depends_on: - search - mailcatcher environment: SEARCH_SERVERS: http://search:9200 SEARCH_TYPE: elasticsearch networks: - mailcatcher - search networks: search: driver: bridge mailcatcher: driver: bridge volumes: es_data:

      Then I configure the SMTP settings to use the hostname mailcatcher and the port 1025. I can then send email and view it in the mailcatcher interface, at localhost:1080.

      Here's the relevant dockerfile: https://github.com/yappabe/docker-mailcatcher/blob/master/Dockerfile

      Here's more about mailcatcher: https://mailcatcher.me/

    • J

      Email Template URL Calculation
      Q&A • email templates url • • jim.sadden

      4
      0
      Votes
      4
      Posts
      454
      Views

      robotdan

      A couple of options:

      You could optionally configure a different template for each tenant so you could hard code the correct URL in each template.

      You could also add the correct URL to the tenant.data and then pull it out in the template during render so you could use the same template across tenants.

      If the state parameter is working well for you for other APIs, you could open a feature request in GH to add this to the API in question.

    • dan

      Sendgrid rejecting our FusionAuth email requests
      Q&A • email sendgrid • • dan

      2
      0
      Votes
      2
      Posts
      176
      Views

      dan

      Does SendGrid indicate why they are rejecting requests? In my experience, this is generally due to invalid creds, or a “From address” with a domain that does not match your SendGrid account.

      So if a default template is being used with a no-reply@fusionauth.io address you may see a runtime error such as a rejected SMTP request.

      Otherwise I'd make sure the IP address is in any whitelists, or share anything else that sendgrid logs.

    • dan

      Can you use the same template for the forgot password and send password emails?
      Q&A • email templates • • dan

      2
      0
      Votes
      2
      Posts
      501
      Views

      dan

      Since both APIs are technically the same, is there a way to use the email template defined for the Setup Password with the Forgot Password API?

      Yes. Navigate to 'Tenants -> your tenant -> Email' and you can set 'Setup password' and 'Forgot password' to be the same template.

      There may be template variable differences, please consult the documentation and ensure you are checking for existence before you rely on them:

      https://fusionauth.io/docs/v1/tech/email-templates/email-templates/#setup-password

      https://fusionauth.io/docs/v1/tech/email-templates/email-templates/#change-password

    • dan

      Same email address across social providers
      Q&A • social logins users login email • • dan

      2
      0
      Votes
      2
      Posts
      196
      Views

      dan

      Each user is unique within a tenant by email address. If a user in the same tenant wants to login with Facebook, Google, or LinkedIn, it will be the same User object.

    • dan

      Email verification email for 'welcome message'
      Q&A • email verification welcome • • dan

      2
      0
      Votes
      2
      Posts
      1312
      Views

      dan

      You are correct. The verified flag exists on the corresponding user and the registration. You could optionally use the "verify registration" templatefor this purpose.

      If you then ignored the verified: false flag on the registration in your code, it should not impact you.

      Another option would be to listen for the user.registration.create event and then fire off an email on your end, or call the Email Send API to send a pre-made FusionAuth email template as a welcome event: https://fusionauth.io/docs/v1/tech/apis/emails/#send-an-email

    • dan

      Magic link expiration when email previews link
      Q&A • email passwordless preview outlook • • dan

      2
      0
      Votes
      2
      Posts
      286
      Views

      dan

      This is unfortunately a known issue. See https://github.com/FusionAuth/fusionauth-issues/issues/629 for some discussion. There are some workarounds in some situations (allow lists in Office 365) but no general workaround.

    • dan

      Email verification without sending emails?
      Q&A • registrations email verification • • dan

      2
      0
      Votes
      2
      Posts
      300
      Views

      dan

      You could use the skipVerification parameter (set it to true) on the user or registration create statement, and then the https://fusionauth.io/docs/v1/tech/apis/users#resend-verification-email call with sendVerifyEmail set to false.

      This would give you a verificationId you could use with this API call: https://fusionauth.io/docs/v1/tech/apis/users#verify-a-users-email

    • dan

      How can I get the client_id in my email template?
      Q&A • email freemarker templates • • dan

      2
      0
      Votes
      2
      Posts
      206
      Views

      dan

      I figured it out…. I just had to put state.client_id in parens so it resolved them together.

      [#assign clientId = (state.client_id?string)!"dafb6ef6-a2a8-4d34-9d69-59bfed3e31aa" /]
    • dan

      The default templates are being marked as spam?
      Q&A • spam verification email • • dan

      2
      0
      Votes
      2
      Posts
      262
      Views

      dan

      It looks like the issue was our mail server. We are using Mailgun SMTP service for our mail sending and this offers a tracking feature.

      This tracking feature adds a invisible image to the html code in order to get request for stats. If I deactivate this feature, the HTML_IMAGE_ONLY_12 error is gone and the mail are no longer marked as SPAM. We don't have any issues with our other applications because sent emails are bigger in text content.

    • dan

      Can I have users login with either a username and email address, or do I have to pick one or the other?
      Q&A • login username email • • dan

      5
      1
      Votes
      5
      Posts
      656
      Views

      T

      @dan I was trying to use the standard register interface from fusion. If I check that I want to use "username" for example, the registration form removes the email option. To circumvent and get both email and username I had to create my own register form.