RE: registration question sendSetPassword flow

Hi again, this is me. Maybe i write this for no one, but also I want to document for other beginners or Core developers

I found a possible solution to the problem. If remove client_id from URL FusionAuth allows me to change the password, I think this is wrong, in the documentation didn't say anything about that, possible bug?

Example good URL --> http://localhost:9011/password/change/<code>?<tenan_id>
Example bad URL --> http://localhost:9011/password/change/<code>?client_id=<client_id>&<tenan_id>

Bad URL is how FusionAuth send to the new users when I set "sendSetPasswordEmail" to true with "setup password" template

Steps to reproduce:

1. Create an app
2. Configure smtp and setup password email
3. Create API key with user/registration POST permission
4. Create a new user with sendSetPassword to true. Example payload:

{
  "registration": {
    "applicationId": <application-id>,
    "data": {
      "displayName": "Johnny",
      "favoriteSports": [
        "Football",
        "Basketball"
      ],
    },
    "id": user_uuid,
    "preferredLanguages": [
      "en",
      "fr"
    ],
    "timezone": "America/Chicago",
    "username": "johnny123",
    "usernameStatus": "ACTIVE"
  },
  "sendSetPasswordEmail": true,
  "skipVerification": false,
  "user": {
    "birthDate": "1976-05-30",
    "data": {
      "displayName": "Johnny Boy",
      "favoriteColors": [
        "Red",
        "Blue"
      ]
    },
    "email": "<email>",
    "firstName": "John",
    "fullName": "John Doe",
    "id": <user_uuid>,
    "imageUrl": "http://65.media.tumblr.com/tumblr_l7dbl0MHbU1qz50x3o1_500.png",
    "lastName": "Doe",
    "middleName": "William",
    "mobilePhone": "303-555-1234",
    "preferredLanguages": [
      "en",
      "fr"
    ],
    "timezone": "America/Denver",
    "usernameStatus": "ACTIVE",
    "username": "johnny123"
  }
}

5. Go to setup email on the email receiver
6. Open URL in private tab (Just in case if you are logged)
7. Get the error missin_redirect_uri

I hope this information is useful for someone ^^

Hi again, this is me. Maybe i write this for no one, but also I want to document for other beginners or Core developers

I found a possible solution to the problem. If remove client_id from URL FusionAuth allows me to change the password, I think this is wrong, in the documentation didn't say anything about that, possible bug?

Example good URL --> http://localhost:9011/password/change/<code>?<tenan_id>
Example bad URL --> http://localhost:9011/password/change/<code>?client_id=<client_id>&<tenan_id>

Bad URL is how FusionAuth send to the new users when I set "sendSetPasswordEmail" to true with "setup password" template

Steps to reproduce:

1. Create an app
2. Configure smtp and setup password email
3. Create API key with user/registration POST permission
4. Create a new user with sendSetPassword to true. Example payload:

{
  "registration": {
    "applicationId": <application-id>,
    "data": {
      "displayName": "Johnny",
      "favoriteSports": [
        "Football",
        "Basketball"
      ],
    },
    "id": user_uuid,
    "preferredLanguages": [
      "en",
      "fr"
    ],
    "timezone": "America/Chicago",
    "username": "johnny123",
    "usernameStatus": "ACTIVE"
  },
  "sendSetPasswordEmail": true,
  "skipVerification": false,
  "user": {
    "birthDate": "1976-05-30",
    "data": {
      "displayName": "Johnny Boy",
      "favoriteColors": [
        "Red",
        "Blue"
      ]
    },
    "email": "<email>",
    "firstName": "John",
    "fullName": "John Doe",
    "id": <user_uuid>,
    "imageUrl": "http://65.media.tumblr.com/tumblr_l7dbl0MHbU1qz50x3o1_500.png",
    "lastName": "Doe",
    "middleName": "William",
    "mobilePhone": "303-555-1234",
    "preferredLanguages": [
      "en",
      "fr"
    ],
    "timezone": "America/Denver",
    "usernameStatus": "ACTIVE",
    "username": "johnny123"
  }
}

5. Go to setup email on the email receiver
6. Open URL in private tab (Just in case if you are logged)
7. Get the error missin_redirect_uri

I hope this information is useful for someone ^^

Add more info:

I want to create users from my backend with "Create a User and Registration (combined)" and set "sendSetPasswordEmail" to True for user write his own password. I think something like next:

My backend --> registration on FusionAuth

FusionAuth --> email to user to configure password

User --> read email --> click link --> go to FusionAuth request his password --> redirect to app

I tested now with version 1.28.1 that if I set on "setup password" redirect_uri param it redirects to login.

User now gets this URL http://localhost:9011/password/change/<code>?client_id=<client_id>&<tenan_id>&redirect_uri=http://localhost:8000/dashboard

But instead of request him password fusionauth ask him login data, and user hasn't password.

Is this idea is wrong? i miss understand anything from the documentation?

Thank you

Hi! I just want email link works when I send the set password for control access on register, but when I open the email and click the link I get error on FusionAuth that I shared on my first post
I don’t know why, maybe I configured something bad or I didn’t. I just up with docker as tutorial said, configured smtp credentials and use python client. User was created and receive the email

Do you know what happens? Do you need more info?

Thank you

Hello, at this time I'm trying to integrate my actual app with fusion auth to develop as new feature, I want to use an invitation feature that I have developed before and migrate it here. Then, on registration API I'm sending this JSON:

{
  "registration": {
    "applicationId": <app_id>,
    "data": {
      "displayName": "Johnny",
      "favoriteSports": [
        "Football",
        "Basketball"
      ],
    },
    "id": user_uuid,
    "preferredLanguages": [
      "en",
      "fr"
    ],
    "timezone": "America/Chicago",
    "username": "johnny",
    "usernameStatus": "ACTIVE"
  },
  "sendSetPasswordEmail": true,
  "skipVerification": false,
  "user": {
    "birthDate": "1976-05-30",
    "data": {
      "displayName": "Johnny Boy",
      "favoriteColors": [
        "Red",
        "Blue"
      ]
    },
    "email": "<email>",
    "firstName": "John",
    "fullName": "John Doe",
    "id": user_uuid,
    "imageUrl": "http://65.media.tumblr.com/tumblr_l7dbl0MHbU1qz50x3o1_500.png",
    "lastName": "Doe",
    "middleName": "William",
    "mobilePhone": "303-555-1234",
    "preferredLanguages": [
      "en",
      "fr"
    ],
    "timezone": "America/Denver",
    "usernameStatus": "ACTIVE",
    "username": "johnny12333333334"
  }
}

The problem is when I receive the setup password email, I can't set it up because I get missing_redirect_uri error on load page, then as a beginner and professional debugger, I set it on the setup password template (redirect_uri to my redirect_url) and get another error about missing_response_code but I don´t know how to continue, maybe I did a wrong configuration? could you help me? please

Thank you

Version: docker 1.28.0