Andre Selton
KKinde
•Created by Ryan Boyle on 1/28/2025 in #💻┃support
Microsoft Entra ID (OAuth 2.0) - Always show sign-in button
Not a problem and glad its working for you now
8 replies
KKinde
•Created by Ryan Boyle on 1/28/2025 in #💻┃support
Microsoft Entra ID (OAuth 2.0) - Always show sign-in button
8 replies
KKinde
•Created by Kenton on 1/27/2025 in #💻┃support
Is it possible to set or update user id before or after user creation
Hi Kenton,
If you don’t have any further questions, we’ll go ahead and close this query. Feel free to reach out anytime if you need assistance in the future.
5 replies
KKinde
•Created by yeswolf on 11/20/2024 in #💻┃support
unable to login using kinde on Android apk preview
Hi Tito
I’ll pass this to my team and get back to you once I have more information. Please let me know if you encounter any new issues, and I’ll be happy to assist further
I’ll pass this to my team and get back to you once I have more information. Please let me know if you encounter any new issues, and I’ll be happy to assist further
118 replies
KKinde
•Created by Ryan Boyle on 1/28/2025 in #💻┃support
Microsoft Entra ID (OAuth 2.0) - Always show sign-in button
Hi Ryan, thanks for answering my questions. We have deployed a fix to the issue that you were seeing, able to test again to make sure it working on your end?
8 replies
KKinde
•Created by Chris on 1/30/2025 in #💻┃support
Edit home page?
Hi Chris,
Thank you for reaching out. The message you're seeing—"There's nothing to see here yet. But an awesome home page is coming soon."—indicates that the default homepage is currently active. To customize this page, you can create your own sign-in and sign-up pages that integrate seamlessly with Kinde's authentication process. This allows you to design a branded experience for your users while leveraging Kinde's secure authentication.
For detailed guidance on setting up custom authentication pages, please refer to our documentation: https://docs.kinde.com/authenticate/custom-configurations/custom-authentication-pages
Additionally, if you want to add a homepage URL to your sign-in page, you can follow the instructions here: https://docs.kinde.com/authenticate/custom-configurations/authentication-experience
If you have any further questions or need assistance with the customization process, feel free to ask.
2 replies
KKinde
•Created by Michal Kučera on 12/10/2024 in #💻┃support
How do I go back from "Check your inbox"?
Hi Michal,
I'm glad to hear that the solution worked for you. We will go ahead and close this ticket. Feel free to reach out if you have any questions in the future.
21 replies
KKinde
•Created by Michal Kučera on 1/30/2025 in #💻┃support
How does token expiration work?
Hi Michal,
Thanks for reaching out!
Token Expiry Configuration Tokens in Kinde have configurable expiry times and need to be refreshed to remain secure. Here are the key points about token expiry: - Access tokens contain access permissions and are the most vulnerable to attacks - It's not recommended to extend access token lifetime beyond 1 day - Refresh tokens are issued alongside access tokens to extend sessions without re-authentication - Session inactivity timeout can be set to require re-authentication after periods of inactivity
What Happens on Token Expiry When an access token expires: - You will get a completely new access token if: - Your existing access token has expired - You revoke your existing access token - Your user has signed out of their session and called the logout function
Token Refresh Process For proper token refresh handling: 1. You need both the access_token and refresh_token 2. You can check if a token is expired 3. You can use refresh_token to get a new access token Here's how unsuccessful responses are handled 4: -
Security Considerations To maintain security: - Tokens need regular updates and refreshing - Short token lifetimes help prevent: - Token theft through man-in-the-middle attacks - Unauthorized access through compromised refresh tokens - Session hijacking on shared/public devices
For cached web applications, it's important to implement proper token refresh mechanisms and handle expiry gracefully to maintain user sessions while ensuring security.
If you need more detailed guidance, let me know, and I can help further.
Thanks for reaching out!
Token Expiry Configuration Tokens in Kinde have configurable expiry times and need to be refreshed to remain secure. Here are the key points about token expiry: - Access tokens contain access permissions and are the most vulnerable to attacks - It's not recommended to extend access token lifetime beyond 1 day - Refresh tokens are issued alongside access tokens to extend sessions without re-authentication - Session inactivity timeout can be set to require re-authentication after periods of inactivity
What Happens on Token Expiry When an access token expires: - You will get a completely new access token if: - Your existing access token has expired - You revoke your existing access token - Your user has signed out of their session and called the logout function
Token Refresh Process For proper token refresh handling: 1. You need both the access_token and refresh_token 2. You can check if a token is expired 3. You can use refresh_token to get a new access token Here's how unsuccessful responses are handled 4: -
invalid_token responses will be returned if the token is expired or invalid
- invalid_request if parameters are missing
- invalid_grant if the authorization code or refresh token is invalid/expired
Security Considerations To maintain security: - Tokens need regular updates and refreshing - Short token lifetimes help prevent: - Token theft through man-in-the-middle attacks - Unauthorized access through compromised refresh tokens - Session hijacking on shared/public devices
For cached web applications, it's important to implement proper token refresh mechanisms and handle expiry gracefully to maintain user sessions while ensuring security.
If you need more detailed guidance, let me know, and I can help further.
2 replies
KKinde
•Created by Ryan Boyle on 1/28/2025 in #💻┃support
Microsoft Entra ID (OAuth 2.0) - Always show sign-in button
Hey Ryan, certainly sounds like you have found a bug with the toggle not being maintained. I will get the team to look into this as I have been able to replicate it.
Is there a reason why you would like to combine the Entra ID with the Microsoft login? Do you also want to add Microsoft Social SSO? Will your client be setting up unique Entra ID connections?
Is there a reason why you would like to combine the Entra ID with the Microsoft login? Do you also want to add Microsoft Social SSO? Will your client be setting up unique Entra ID connections?
8 replies
KKinde
•Created by ZayneKomichi on 1/27/2025 in #💻┃support
Use Kinde Auth with Ionic react
@ZayneKomichi Are you able to share a video of the issue? feel free to direct message me if you prefer.
4 replies