Love Ruby. Learning Java and security best practices.
On the weekends you will find me on a Denver mountain top.
Happy to help in any way I can!
You are going to want to make sure that you are on the latest version of FusionAuth (1.29.1), as some versions may not display this option (this was a recent bug fix)
Located under Applications > OAuth > Toggle
A screenshot is attached.
Hope that helps!
Thanks,
Josh
@marcus-krassmann Thanks for the info -> we have updated the MVN repo with a more current point release.
Thanks,
Josh
It sounds like you are on the right track. A few comments:
By the way, if you are running in FusionAuth in production at scale, we encourage you to get a support contract 
. Having one allows access to the engineering team via opening support tickets. https://fusionauth.io/pricing/. Obviously, this is not a requirement, but should your business needs require a higher support level, it is available 
I hope this helps!
Hi @michael-schramm,
If you could provide a bit more context to your issue, we could perhaps give a few pointers, but unfortunately, I believe this is outside of our accepted/documented use guidelines. FusionAuth is supported using MySQL and Postgres (documentation here).
Thanks,
Josh
Hi bogorad,
The functionality that you are looking for is located in the themes section of the FusionAuth application. Specifically, you will want to review all OAuth pages (OAuth authorize and possibly others) to adjust the template to your user requirements. FusionAuth uses FreeMarker for templating.
Additionally, below is a link to our documentation regarding themes (as well as a very useful video on how to mimic a custom Stack Overflow login page, for instance)
https://fusionauth.io/docs/v1/tech/themes/
Hopefully, that sets you on the right path! Enjoy FusionAuth!
Thanks,
Josh
1.30 is released 
Release notes forming
https://fusionauth.io/docs/v1/tech/release-notes/
My Database (sql, rds, postgres) is filling up. Any pointers on how to address this?
Hey FusionAuth Community!
Just a heads up -- we have made a few revisions to this post!
If you are interested in using VueJS and FusionAuth -- check it out!
https://fusionauth.io/blog/2020/08/06/securely-implement-oauth-vuejs
There is an option to adjust the number of claims on the token through the jwt populate lambda.
Let me know if that gets at what you looking for!
Thanks,
Josh
There are a number of things that might be causing this.
One thing to check is to see how many logs, debug, and other records your installation is holding on to. This can be reviewed by clicking under Setting -> System
I have attached a screenshot for your review.
Finally, it might be useful to review your system architecture to ensure it is sized appropriately for the number of users you are hosting.
I hope this helps!
Thanks,
Josh
@lambert-torres replied out of band to this forum. This may have been addressed in version 1.38.0 and beyond.
Thanks,
Josh
Since FusionAuth hosts each customer on their own servers (you are not sharing hosts with other customers as in a traditional SaaS model), you can determine when (or if) you want to upgrade your server in FusionAuth Cloud.
If you would like to further weigh your options, you can reach out to our sales team for advice on what may best support you.
Thanks,
Josh
Thanks for the question -- I don't think that this will work in the way that you intend.
I would have to test to be sure, but if FusionAuth cannot make the user (based on your chosen user provisioning policy), then this user will not be created and thus not linked, and therefore this event will not fire.
https://fusionauth.io/docs/v1/tech/events-webhooks/events/user-identity-provider-link
Depending on your desired outcome, it might be best to change your linking strategy (to create this user when linking) and then use user.create webhooks. You could fail this transaction if certain requirements are not met (thus the user will not be created and linked).
I hope this helps!
Thanks,
Josh
@quent Thanks for the question!
To note, each IdP will handle logout differently. It would be hard for FusionAuth to know how to log each user out of disparate systems. Killing each user session is specific to that IdP implementation. In the FusionAuth logout process, we will call a logout endpoint of your choosing. In that endpoint, you could have your integration call the IdP to remove the user's session.
I hope this helps!
Josh
@paul-fink marking this thread as being addressed out of this forum band.
-Josh
Thanks for the question - if you remove the quotes from your args, that may resolve the issue.
- FUSIONAUTH_APP_ADDITIONAL_JAVA_ARGS=-Djavax.net.ssl.keyStore=/fusionauth/example.p12 -Djavax.net.ssl.keyStorePassword=****
Our documentation may need to be updated to address this
https://fusionauth.io/docs/v1/tech/admin-guide/securing#custom-keystore
Josh
Is this still an open issue for you? If so, including the debug information (and turning on debug for the SAML IdP can be helpful) as you complete the SAML handshake.
@leandro-menagonzalez Sorry - I was traveling for a bit and then under the weather.
Were you able to resolve this?
If not, my understanding is that this would be a mapping problem. Essentially, Google would have to be instructed to send over a profile pic url, and FusionAuth would consume that in the AuthN response. Further, a reconcile lambda can be used to grab this URL attribute and store on the user, etc. Let me know if I am misunderstanding the issue.
Josh
Thanks for the question. If I am understanding correctly, if you are expecting a certain attribute to be returned in an AuthN response, this would require additional configuration on the part of Google. Is there a configuration tool on that side to add an additional attribute to be sent in an AuthN response?
Thanks,
Josh
Hi @josh-dura -
Is this still an open issue for you? The event logs are stored in the DB, so you should be able to access them by navigating in the admin UI ( system > events log ) to get a better idea of what might be occurring.
Thanks,
Josh