vitaminDFishInThaSea Comments

vitaminDFishInThaSea

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

I believe this has been fixed, given that I am not getting the same error when refreshing after adding openid to all of my scopes in my application. Thanks guys 🙂

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

no problem, thanks for the effort. Not in any rush to fix it, don't need OIDC rn and I'm not even deployed to customers RN so not costing me anything. Let me know (either via DM or here) if there's anything you need.

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

are you guys able to reproduce it for yourselves or would it help if i tried to make a guide to reproducing it?

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

Hi guys, any updates on this so far? Been nearly a cuppa weeks 😛

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

(I think?)

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

oh BTW - removing oidc from scopes solves this seemingly

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

i reckon it's one line of code which regenerates auth_time in the refresh logic instead of just copying the old one over; because someone reckoned for oidc that the auth time is relevant to the creation of the information and not the creation of the token

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

getting the exact same issue.

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

For me though, the refresh endpoint fails.

53 replies

KKinde

•Created by sudhanshug on 1/22/2024 in #💻┃support

Can the PKCE access token be used to authenticate/authorize requests

I've gotten the same thing, failed refresh for the access token from oidc-client-ts.

53 replies

KKinde

•Created by vitaminDFishInThaSea on 1/27/2024 in #💻┃support

JwtInvalidIssuerError: Missing Issuer. Expected:

This does resolve it but lemme play around for a bit longer. Basically the backend apps in Kinde seem to make some tokens that arent usable with jwtverify. This isnt really documented AFAIK.

13 replies

KKinde

•Created by vitaminDFishInThaSea on 1/27/2024 in #💻┃support

JwtInvalidIssuerError: Missing Issuer. Expected:

13 replies

KKinde

•Created by vitaminDFishInThaSea on 1/27/2024 in #💻┃support

JwtInvalidIssuerError: Missing Issuer. Expected:

so after using a different app in kinde, specifically a frontend javascript one, i am able to get my ISS and everything filled in...

13 replies

KKinde

•Created by vitaminDFishInThaSea on 1/27/2024 in #💻┃support

JwtInvalidIssuerError: Missing Issuer. Expected:

The token is created by createSignInResponse of the oidc-client-ts package.

13 replies

KKinde

•Created by vitaminDFishInThaSea on 1/27/2024 in #💻┃support

JwtInvalidIssuerError: Missing Issuer. Expected:

The reason i posted it here is because kinde creates this token. I know the ISS is missing - i just have to kniw why the access token that Kinde gives me doesnt have one.

13 replies

KKinde

•Created by vitaminDFishInThaSea on 1/27/2024 in #💻┃support

JwtInvalidIssuerError: Missing Issuer. Expected:

I am using the access token that is returned from my kinde login via an OIDC client.

13 replies

KKinde

•Created by vitaminDFishInThaSea on 1/27/2024 in #💻┃support

JwtInvalidIssuerError: Missing Issuer. Expected:

I've been reocmmended to not send id tokens on a normal request. But sending the access token I just get that error. What can I possibly do? In addition, in the Kinde dashboard i setup my access token to have my users email. That isn't appearing in my latest tokens:

{
    "aud": [],
    "iat": 1706387738,
    "jti": "582342bb-51cc-4449-951f-f4f9aba03374",
    "scp": [
        "openid",
        "profile",
        "email",
        "offline"
    ]
}

{
    "aud": [],
    "iat": 1706387738,
    "jti": "582342bb-51cc-4449-951f-f4f9aba03374",
    "scp": [
        "openid",
        "profile",
        "email",
        "offline"
    ]
}

halp 😦

13 replies

KKinde

•Created by vitaminDFishInThaSea on 1/27/2024 in #💻┃support

JwtInvalidIssuerError: Missing Issuer. Expected:

OK so i've been forced to send the id_token. How come? is there some middleware that would work with just the access token?!

13 replies

Gaming

Programming