rai_kinde
KKinde
•Created by ghoti143 on 4/9/2024 in #💻┃support
Having trouble setting up SAML
Hi @ghoti143, are you able to DM me the name of your business pls, and I'll have a look through the logs. Thanks
4 replies
KKinde
•Created by sudhanshug on 1/22/2024 in #💻┃support
Can the PKCE access token be used to authenticate/authorize requests
hi @snusguy123 and @sudhanshug , we're still investigating the issue with the
auth_time claim in the id token being incorrect when refreshing. We'll provide an update as soon as we have more information.53 replies
KKinde
•Created by C on 12/30/2023 in #💻┃support
Unable to add payment details
Hi @C , apologies for the late reply. Are you able to DM me your business name or Kinde domain (the one that looks like
<domain>.kinde.com ) please? Thanks6 replies
KKinde
•Created by Vector on 11/5/2023 in #💻┃support
Cookie Problem
Also, are you able to let us know what your stack looks like, and whether you are using any of the Kinde SDKs?
14 replies
KKinde
•Created by Vector on 11/5/2023 in #💻┃support
Cookie Problem
Hi @Vector , I'm following up with the rest of the team regarding the part about staying logged in across subdomains.
With protecting your API endpoint. once an enduser logs in, you can use the access token received from Kinde, and pass that in the Authorization header of your API endpoint. Your API then has to verify that the access token is valid and has been issued by Kinde. You can find more details about this in the docs: https://kinde.com/docs/developer-tools/protect-your-api/#protect-your-api
14 replies
KKinde
•Created by Vector on 11/5/2023 in #💻┃support
Cookie Problem
Hi @Vector , can you please clarify my understanding of your setup:
- You have API endpoints accessible via https://api.domain.com/...
- You have 1 frontend accessible via https://dashboard.domain.com
- You have 1 frontend accessible via https://frontend.domain.com
If you enduser goes to https://dashboard.domain.com , logins, then navigates to https://frontend.domain.com , you want them to stay logged in?
With the API endpoint, is that meant only be accessed from those 2 frontends only? And you want to protect the endpoint by ensuring only a logged in user can access it?
14 replies