@kasir-barati When you say "I dunno if we can use them to change what Get /me endpoint returns", you might want to check out the UserInfo Populate Lamba.
Posts made by mark.robustelli
-
RE: NextJS + custom backend (NestJS)
-
RE: Angular and .NET - totally confused
@alan-rutter Please forgive me if I am over simplifying, but if you use the Authorization Code Flow, FusionAuth will write a cookie with the JWT. From there, when you make an API call, the cookie should be sent and you can interrogate the JWT for access. Does that make sense?
-
RE: MFA Authentication for the API Connector User
@hanumant-sidraya Can you please clear up a few things.
It sounds like you have customers that have their own IdP. When you say "the customer has exposed the API for authentication.", what does that mean. They have an API that can confirm their identity?
If you have the APIs and authentication working with the customer's IdP, have you tried enabling the Two Factor Authentication for the user? Go to your user details screen in FusionAuth and then click 'Enable Two Factor' from the dropdown in the upper right hand corner?
For more details, you can refer to the Two Factor API documentation and the Enable Multi-Factor Authentication API documentation.
-
RE: Username as the LoginID for forgot password workflow
@david-4 You should have have any problem using the loginId. As far as searching the custom attribute data, you should be able to using the APIs if needed. Check out how to search user data attribute here.
-
RE: Upgrading from 1.46.0 to 1.47.1 CSRF token issue with IdP
@tvdlooy Could you try to remove the identity provider login and then add it back? You should not need to, but if that works it could let us know that something else got messed up.
-
RE: NextJS + custom backend (NestJS)
@kasir-barati It depends on what you are trying to do. If you are trying to authenticate a user for your application and the login flow that redirects to FusionAuth and returns to your application works, then you would not need the APIs. Even if you need to customize the JWT, I would look into lambdas for that.
-
RE: Angular and .NET - totally confused
@alan-rutter So, what is the purpose of the .Net backend API? Is it just to do some checks? It seems like you want your user to be authenticated in the Angular app. Is that not the case? In the scenario above, I'm not sure you need the .Net backend to be authenticated.
-
RE: Using TwoFactorLogin and expose TwoFactorId
@didier I'm not 100% sure what you mean by "expose twoFactorId in frontend part". I'm assuming you mean give the user a way to input the code. So yes, you will have to allow them a method to input their code and then complete the login. Please see here for more information.
-
RE: 431 Request Header Fields Too Large error (almost 100 fusionauth.known-device cookies)
@05-years_tourer So there is no configuration value but you can check out this and see if there is a strategy that will work for you.
Device Limiting with FusionAuth. -
RE: Multi tenants for one application
OR, perhaps a new concept is needed in FusionAuth -- "Organizations" if you will -- that allows for granting users with different permission sets inside the same Application.
You should feel free to open up a feature request here.
-
RE: 431 Request Header Fields Too Large error (almost 100 fusionauth.known-device cookies)
@05-years_tourer have you tried to clear you cache and try again?
-
RE: Fusion Auth integration with Azure AD Saml the saml response returns user id as the nameid instead of the user email
@mr-sahand Have you considered using a lambda to populate the info as you want it?
SAML v2 Populate Lambda (https://fusionauth.io/docs/extend/code/lambdas/samlv2-response-populate)
-
RE: FusionAuth stopped making the callback to authorized URL after adding gate
@marco-0 Couldn't you add some logic to the redirect page and send the user to the correct one based on the situation?
-
RE: Multi tenants for one application
@vandaele-seba A tenant in FusionAuth is a named object that represents a discrete namespace for Users, Applications, and Groups. It is a way to separate Users, Applications, and Registrations into separate containers. There is a diagram in the documentation that may help.
-
RE: Plan Cost for Development/Staging Environments
@andy-2 are you talking about self-hosted or Fusion-Auth hosted?
-
RE: Visual Studio Templates Broken?
@david-5 Which version of Visual Studio are you using?
-
RE: Has anyone successfully integrated FusionAuth with Metabase using SAMLv2?
@admin-9 I have not worked with Metabase, so I don't think I can be of help there. I do want to make sure you have seen the documentation on configuring FusionAuth as the Service Provider.
It is worth noting the bit about opening up a request for FusionAuth to provide additional examples on Github. It may be worth you time to do that.
-
RE: Checking for user.roles if it is equal to a specific role and based on that determine the URL Forgot-Password
@essamkayall1996 Are you able to debug and confirm "client' is in the list of user.roles? Also are you saying that no page renders? What error message are you getting? It looks like in either case of if statement that you are returning the same page.
-
RE: SetCookie Domain is too broad for the cookies to work
@fin When you say the cookies are blocked, what error message are you getting? What do you mean by blocked?