FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login
    1. Home
    2. mark.robustelli
    3. Posts
    • Profile
    • Following 0
    • Followers 0
    • Topics 16
    • Posts 410
    • Best 25
    • Controversial 0
    • Groups 3

    Posts made by mark.robustelli

    • RE: Redirect loop between login and consent page during OAuth2 authorization (Proof of Concept)

      @jefferson-piscos, the debug enabled is under the OAuth tab. Go ahead and enable that and check the logs.

      Screenshot 2025-09-25 at 7.48.42 AM.png

      Also it is a little weird that you are redirected to a consent screen. Do you have any consents configured? You can go to Settings -> Consents in the Admin UI.

      Screenshot 2025-09-25 at 7.55.20 AM.png

      Then you can check the user and see if you have any set for the user you are testing.

      Screenshot 2025-09-25 at 7.55.29 AM.png

      Hopefully that will clear it up and you will be good to go. If not, let's see what those logs say.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Redirect loop between login and consent page during OAuth2 authorization (Proof of Concept)

      @jefferson-piscos There are a few things that may be going on. Where are you you expecting to redirect to after successful login? Can you tell if that page is being hit or is it redirecting back to the login page because that is the page you set it to? Anything you can safely share about the application configuration in FusionAuth or code for your redirect page could be helpful.

      It terms of tips for debugging, you can turn on "Debug Enabled" for the identity provider and then check the Event Log after you try to log in. Let us know if that yields any useful information.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Issues with multi-tenant refresh token revocation and custom JWT signing

      @michaelginn529 What do you have your "Logout behavior" set to for the application? Any other specific configuration you can share would help as well.

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: Proxy IP Issue

      @haziqt Sounds like FusionAuth is up and working except reporting the wrong IP address of the user on login. You may want to consider opening a issue.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Issue with Getting Started guide, invalid client

      @raymondcamden Ha, gald you got it working. Generally, the quickstarts come with a docker file that you can just run docker compose against and it will get you the instance. That instance would be configured to work with the sample code for that quickstart. The application and uses would be created and things like that. If you have it working the way you want, awesome. If you run into other issues, please just let us know.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Issue with Getting Started guide, invalid client

      @raymondcamden Are you using the Quickstart app? If so, you need to use the Docker instance specified in the app. If you just spin up a brand new instance of FusionAuth, the sample app does not exists and that is likely why you are getting the error message. Try using the Docker instance in the Quickstart and you should be fine. Let me know how it goes.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Generic Connector, OAuth2.0

      @d-chinguun-0301 It doesn't look like you can pass dynamic custom parameters to a connector. It does seem you can configure custom HTTP headers though. If you only have a few applications for the user to log into, you could potentially set up different connectors, each with their own custom http headers.

      Also, depending on what you are trying to accomplish, it may be possible to create a webhook that would respond to an event that could potentially tell an application where their most recent login came from.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: How to implement mutual TLS (mTLS) with FusionAuth — best practices and real-world solutions?

      @ehallpassofficial From what I can tell, you are right on with using the proxy as the way to go. I don't have specific experience with that so would love to hear from the community on theirs as well. I did find an open issue with this request and suggest you upvote it to give it some visibility.

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: Is there away to provide error message data from a webhook via either Webhook or Event logs?

      @edschlough If you take a look at the example code from the webhook documentation, it shows how to return errors. Is this what you are after?

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: Changes not being applied

      @benlabbe2007 What version of FusionAuth are you running?

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: OAuth Complete Registration functionality breaks the authorization flow after upgrading to version 1.59.1

      @atabakov Can you please share the settings for the application in that Admin UI? Please do not include any secrets.

      posted in Comments & Feedback
      mark.robustelliM
      mark.robustelli
    • RE: Duplicating an application held in 'Tenant1' to 'Tenant2' stays in 'Tenant1'

      @francis-ducharme-0 You may have to parse the json returned from the get and modify a few things. Does the application get created but not work or does the application not get created? I would think you would need to take the relevant parts from the returned application then create the application under a new tenant? Remember you will have to use the new TenantId in the Request Header. If you are not supplying the TenantId, it will use the default.

      On a side note: If you are still interested in a duplicate application across tenant feature in the API, you might want to put a request in.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Doubling of login records

      @sergey_smirnov, it is awesome that you are able to follow and create steps to replicate the issue. To be 100% I'm not sure if this is a bug or a feature request. If FusionAuth is not behaving as you would like it, I would suggest opening an issue on Github. Be sure to include the details and repeatable steps.

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: Duplicating an application held in 'Tenant1' to 'Tenant2' stays in 'Tenant1'

      @francis-ducharme-0 Hey, after taking a look, it seems the only way to do it is to get the application you want to use, parse the JSON for the things you want to keep and then format new json for the create. So you can do it, it is just going to take a little extra work. Sorry for the inconvenience.

      I'm not sure exactly what you are trying to accomplish, but have you checked out Universal Applications? A bit more documentation on them is available here.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Duplicating an application held in 'Tenant1' to 'Tenant2' stays in 'Tenant1'

      @francis-ducharme-0 I was unable to tinker with this last week, but didn't want you to think I forgot about it. It is still on my list when I have some availability. Will post if/when I find something.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Migrate users with a salted hash passwords?

      @michaelgaffney278 Is there a reason you would like to keep the existing users on the old hash? It doesn't seem like it. If you would like to rehash all users when they login, please check this out. It talks about rehashing all passwords for a custom hash, but if you select an existing hashing scheme, it should convert it as well. Is this what you are after?

      Screenshot 2025-08-18 at 8.54.18 AM.png

      I would think you could migrate all the existing users with your custom hashing, then at some point switch the hash setting and be where you want.

      I would test this out before trying in production, but it may do the trick.

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: How to track user online/offline/idle times in real-time dashboard & reports using Kafka events from auth server

      @d-chinguun-0301 Interesting use case. Once the user has authenticated, FusionAuth doesn't know much about what the user is doing other than to refresh tokens or log out the user. You could put some logic in the application itself that would help you calculate.

      Also, I did come across this post that might give you some ideas too.

      Would love to see some screenshots once you get it up and running!

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: Duplicating an application held in 'Tenant1' to 'Tenant2' stays in 'Tenant1'

      @francis-ducharme-0 It looks like you can do it through the AdminUI and generally if you can do it through the AdminUI, you can do it through the APIs. I should have some time later this week to test this out. If anyone else gets a chance to before then, please let us know.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Migration of Fusion Auth hosted (AWS) to GCP

      @lambert-torres You can get support for FusionAuth. Please see the pricing page if you are interested. I'm not sure if this is your exact situation, but you might want to look at this blog post as well.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Using server-side GTM with FusionAuth for Google Ads tracking

      @witard91335 Interesting, how do you see the flow working? What kind of tags are you trying to track though FusionAuth?

      posted in Q&A
      mark.robustelliM
      mark.robustelli