Ages Comments - Answer Overflow

Topics

Ages

•Created by yeswolf on 11/20/2024 in #💻┃support

unable to login using kinde on Android apk preview

Hello @Tito , It seems that the issue may be with the redirect handling after the in-app browser closes. Since the app is not entering the authorized state after a successful login, it’s likely that the redirect URI is not properly configured or the app isn’t catching the redirect intents as expected. - Make sure that your redirect URIs are correctly set in the Kinde Dashboard. This should match the URI scheme you've defined in your app.json. - Since the redirect isn’t being picked up correctly, ensure that your app.json includes the necessary setup for both Android and iOS. You might need to explicitly define the intentFilters for Android and update the iOS scheme. For Android, your app.json might look like this:

{ "expo": { "platforms": ["android"], "android": { "package": "com.yourapp", "intentFilters": [ { "action": "VIEW", "data": { "scheme": "your-app-scheme" } } ] }, "ios": { "bundleIdentifier": "com.yourapp", "config": { "appAuth": { "redirectUri": "your-app-scheme://redirect" } } } } }

This ensures that Android properly catches the redirect. - It might be helpful to ensure that the component checks for a valid authenticated state before rendering. You can implement a check to see if the user is already logged in, or whether the app should wait for the redirect before attempting to authenticate again. - After making these adjustments, test on a physical device and check the app logs for any error messages related to the redirect handling. Ensure that the authorization flow works smoothly from login through the redirect back to the app. If you're still encountering issues, feel free to share the specific logs or error details and your current setup. I’d be happy to escalate this to our engineering team for a deeper investigation.

118 replies

•Created by Mert Efe Cerit on 1/28/2025 in #💻┃support

Nuxt + Kinde Module Logic Problems

Hi @Mert Efe Cerit Thanks for providing the detailed explanation of the issue you're facing. I'd like to clarify the main issue you're encountering: - When the token expires, the user is redirected to the login page but is automatically logged in again without filling in any inputs. - Instead, you want the user to be redirected to the login page and required to fill in the relevant fields when the token expires. Could you also please confirm: - The version of the Kinde Nuxt module you're using? - Are there any specific configurations or customizations you've made to the Kinde module or Nuxt app? - Are you using any particular authentication flow (e.g., OAuth, OpenID Connect) in the app? This information will help us in debugging the issue more effectively. Let me know, and we'll take it from there

11 replies

•Created by Dave on 1/27/2025 in #💻┃support

Pass custom parameters through authUrlParams

Hi @Dave Thanks for the details. It looks like the mz_application_id isn't being passed correctly through the authUrlParams in <LoginLink>. Here's how to ensure it's included in the token: - Ensure mz_application_id is created and marked as public in Kinde. - Map it correctly in the token customization settings to include it as a custom claim. - Use authUrlParams in the <LoginLink> component:

<LoginLink authUrlParams={{ mz_application_id: "123" }}>Sign in</LoginLink>

- Review token customization settings and use developer tools to check if mz_application_id is correctly included. - If using React, Kinde's SDK allows passing custom parameters:

import { useKindeAuth } from '@kinde-oss/kinde-react'; function SignIn() { const { login } = useKindeAuth(); login({ authUrlParams: { mz_application_id: "123" } }); return <button onClick={handleLogin}>Sign in</button>; }

For more details, refer to https://docs.kinde.com/properties/work-with-properties/properties-in-tokens/ If the issue persists, let us know, and we’ll assist further

4 replies

•Created by yeswolf on 11/20/2024 in #💻┃support

unable to login using kinde on Android apk preview

Hello @Tito , Thank you for sharing the details. Here's a summary of the steps to resolve the issues: 'No discovery document' Error on Android: - Double-check Kinde settings (redirect URIs, client IDs). - Ensure proper network access for the Android simulator (try a physical device). - Simulators may have network restrictions; testing on a real device could help. More info: https://github.com/expo/expo/issues/9954. iOS Authentication Failure: - Verify client credentials in the Kinde dashboard. - Ensure the authentication method is supported (the @kinde-oss/react-native-sdk-0-7x might not work with Expo due to dependencies like react-native-keychain). More info: https://community.kinde.com/kindeoss-reactnativesdk07x-android-browser-compatibility-issue-g3mlYqMd1sNl. Dependency Issues with @kinde-oss/expo: - Ensure correct versions of @expo/config-plugins to avoid compatibility issues. Next Steps: - Review Kinde SDK docs for proper setup: https://docs.kinde.com/developer-tools/sdks/native/expo-react-native. - Check the GitHub repo for related issues or open a new one: https://github.com/kinde-oss/expo. Feel free to share any logs or further details for more specific help.

118 replies

•Created by Neurath on 11/14/2024 in #💻┃support

Entra SSO

Hi @Neurath Thanks for reach out, It appears you're encountering an error during the OAuth 2.0 callback process, specifically when exchanging the authorization code for an access token. The error message indicates that the secrets for the social provider have expired. This typically means that the credentials (such as client secrets) used to authenticate with the social provider are no longer valid. Recommended Steps: - Log into your social provider's developer console (e.g., Google Developer Console, Facebook for Developers) and check the status of your application's credentials. - If the credentials have expired or are invalid, generate new ones. - Navigate to your Kinde dashboard. - Go to the social connection settings and update the credentials with the new ones obtained from your social provider. - After updating the credentials, test the authentication flow to ensure that the error is resolved. If the issue persists after updating the credentials, please provide more details about the error message or any logs that might help in diagnosing the problem.

13 replies

•Created by Derrick W on 11/13/2024 in #💻┃support

websockets

Hi Derrick, Thanks for reach out, just to clarify, are you specifically looking for a way to extract and validate the 'Kinde' cookie within the defineWebSocketHandler() function, or are you also considering other aspects of the WebSocket connection for user validation? Let me know if you'd like more details on the solution.

2 replies

•Created by bifunctor on 1/27/2025 in #💻┃support

How to implement the token based authentication in GRPC interceptor with Python SDK?

Hi @bifunctor Thanks for reach out. To implement token-based authentication in a gRPC server using Python, you can create a custom interceptor to validate bearer tokens. Here's a concise guide: - Define a class that inherits from grpc.ServerInterceptor and override the intercept_service method to handle authentication. - In the intercept_service method, extract the Authorization header from the request metadata. Ensure the token starts with "Bearer " and is followed by a valid JWT. - Use a JWT library to decode and verify the token's signature and claims. Ensure the token is not expired and contains the necessary claims. - If the token is missing, invalid, or expired, abort the request with a UNAUTHENTICATED status. - To test interceptor, you can use a gRPC client that includes a valid JWT in the Authorization header. Ensure the token is signed with the same secret key used in the interceptor. Note: - Replace 'HS256' and self.secret_key with the appropriate algorithm and secret key used in your application. - Ensure the jwt library is installed (pip install pyjwt). For more detailed information on implementing token-based authentication in gRPC with Python, refer to the gRPC Python examples and the Kinde Python SDK documentation. Let me know if you need help with this process or if there’s anything else I can assist with.

2 replies

•Created by Kenton on 1/27/2025 in #💻┃support

Is it possible to set or update user id before or after user creation

Hey @Kenton, Unfortunately, it's not possible to create a new user with the same Kinde user ID once it's deleted. Each user ID is unique and cannot be reused to avoid conflicts in the system. The best solution is to update all the references in your database where the old user ID was used and replace it with the new user ID. Let me know if you need help with this process or if there’s anything else I can assist with

5 replies

•Created by Neurath on 11/22/2024 in #💻┃support

Entra AD - How can I get AD group information?

Hi @Neurath , To ensure that Azure Active Directory (Entra ID) group information is included in your access tokens when using Kinde's custom login pages, please consider the following steps: - In your Entra ID application settings, enable group claims to be included in tokens. This ensures that group information is present in the tokens issued to your application. https://learn.microsoft.com/en-us/security/zero-trust/develop/configure-tokens-group-claims-app-roles - Ensure that your custom authentication flow uses the appropriate Kinde authentication endpoints. The discrepancy in group information may arise from differences in the endpoints used during authentication. https://docs.kinde.com/authenticate/custom-configurations/custom-authentication-pages By configuring group claims in Entra ID and aligning your custom authentication flow with Kinde's recommended endpoints, you should be able to retrieve the desired group information in your access tokens. Let me know how it goes.

23 replies

•Created by Stéphane on 11/13/2024 in #💻┃support

Trouble with SMS

Hi @Joey , Apologies for the delayed response. Kinde provides a limited number of SMS messages for testing purposes. To enable SMS authentication for your users, you need to integrate your own Twilio account with Kinde. https://docs.kinde.com/authenticate/authentication-methods/phone-authentication To ensure that your application is using your Twilio account for sending SMS messages: - In the Kinde dashboard, verify that your Twilio Account SID and Auth Token are correctly configured. - Log in to your Twilio console and navigate to the Usage section to view your SMS activity. If messages are being sent through your Twilio account, they should appear here. https://www.twilio.com/docs/usage/api/usage-record Twilio offers two primary services for sending SMS: Messaging Service: This service allows you to send SMS messages using your own logic and handle responses as needed. Verify Service: Designed specifically for phone number verification and two-factor authentication (2FA), this service manages the process of sending verification codes and validating them. https://www.twilio.com/code-exchange/sms-phone-verification For multi-factor authentication (MFA) purposes, it's recommended to use Twilio's Verify service, as it simplifies the implementation and enhances security. Next Steps: - Ensure that your Twilio credentials are correctly configured in Kinde. - Check your Twilio console to verify that SMS messages are being sent through your account. - For MFA, consider using Twilio's Verify service to streamline the verification process. If you have any further questions or need additional assistance, please don't hesitate to reach out

6 replies

•Created by Ricer on 11/12/2024 in #💻┃support

Flutter SDK with Encrypted Box

Hi @Ricer
Thank you for your inquiry. To assist you effectively with the token expiration issue in your Flutter application, could you please provide the following details: Flutter SDK Version: You can find this by running flutter --version in your terminal. Dart SDK Version: This is typically included in the Flutter version output, but if needed, you can run dart --version. EncryptedBox Package Version: Specify the version of the EncryptedBox package you're using. HTTP Client Library: Are you using a specific HTTP client library (e.g., Dio, http) to manage API requests? Authentication Flow: A brief overview of your authentication process, including how tokens are obtained, stored, and refreshed. Error Messages or Logs: Any error messages or logs you've encountered related to token expiration or refresh failures. Providing this information will enable us to diagnose the issue more accurately and offer targeted solutions to ensure your application's token refresh mechanism functions as intended. If you have any further questions please don't hesitate to reach out

3 replies

•Created by Kenton on 1/27/2025 in #💻┃support

Is it possible to set or update user id before or after user creation

Hi @Kenton , Thank you for reaching out. I’ll pass this query along to my team to get further clarification on whether it’s possible to create or update a user with the same user ID in Kinde. I’ll get back to you as soon as I have more information.

5 replies

•Created by Mert Efe Cerit on 12/9/2024 in #💻┃support

/api/login route cannot found on build (NUXT)

Hi @Mert Efe Cerit , No worries at all—I’m glad to hear the issue has been resolved and that the server-side SSL certificates were the key. I’ll go ahead and close this ticket now. Should you have any other questions or need assistance in the future, feel free to reach out by opening a new ticket. Thank you, and have a great day! 🙂

17 replies

•Created by Michal Kučera on 12/10/2024 in #💻┃support

How do I go back from "Check your inbox"?

Hi @Michal Kučera By "Callback URI," I am referring to either the "Allowed callback URLs" Please let me know if you need any further clarification or assistance

21 replies

•Created by Dave on 1/27/2025 in #💻┃support

Pass custom parameters through authUrlParams

Hi @Dave , To include a custom parameter like mz_application_id during authentication, you can pass it via the authUrlParams prop in the LoginLink component, as you've done:

<LoginLink authUrlParams={{ mz_application_id: "123" }}>Sign in</LoginLink>

However, to have this parameter reflected as a custom claim in the token, you'll need to ensure that the custom property is properly configured in your Kinde dashboard: Define the Custom Property: - Navigate to your Kinde dashboard. - Go to the Properties section. - Create a new property named mz_application_id and mark it as public. Map the Custom Property: - Ensure that the custom property is mapped correctly to the user's profile or session. - This mapping allows the property to be included in the token as a custom claim. For more detailed guidance on managing properties and adding them to tokens, please refer to Kinde's documentation: https://docs.kinde.com/properties/about-properties If you've already set up the custom property and it's still returning null in the token, please ensure that the property is being correctly assigned during the authentication process. If the issue persists, feel free to provide more details, and we'll be happy to assist further

4 replies

•Created by Julien on 1/27/2025 in #💻┃support

Kinde + react router v7 (remix)

Hi @Julien , Thank you for bringing this to our attention! I'll follow up with our engineering team about this. I'll keep you posted as soon as we have more details or updates to share. Please let me know if you encounter any specific challenges in the meantime, and I'll do my best to assist.

3 replies

•Created by Michal Kučera on 12/10/2024 in #💻┃support

How do I go back from "Check your inbox"?

Hi @Michal Kučera , Did the solution help resolve your issue, or do you have any further questions? Feel free to reach out if you need more assistance, otherwise, I'll go ahead and close this.

21 replies

•Created by itsmexd_ on 1/11/2025 in #💻┃support

Sveltekit Auth failing on build and preview

Hi @itsmexd_ , Have you had a chance to try the suggested changes in the Vite configuration? If you're still encountering issues or have any questions, feel free to let me know, and I'll be happy to assist further. Otherwise I'll go ahead and close the request

5 replies

•Created by Ankarin on 1/16/2025 in #💻┃support

Kinde + bubble.io

Hi @Ankarin , Have you had a chance to try the suggested steps, or do you have any questions or further details you'd like to discuss? Otherwise we’ll plan to close this inquiry.

3 replies

•Created by daraxdray on 12/20/2024 in #💻┃support

Fetching user's organization from Next.js SDK returns null and no name for organization returned.

Hi @daraxdray , I wanted to follow up and see if you were able to resolve the issue with retrieving the organization list. Have you had a chance to try the suggestions I mentioned earlier? If you're still experiencing problems or have any further questions, feel free to reach out. Otherwise, I will consider closing this issue.

11 replies