Channels
#general
- t
trev
03/04/2022, 9:32 PMPerfect, thank you ! - a
azzlack
03/07/2022, 8:31 AMAnyone knows if its possible to use Supertokens with Azure AD? It seems it's possible to do it with ThirdParty login, but I am wondering if anyone has done it successfully before - r
rp
03/07/2022, 8:36 AMIt should be possible via custom Third party provider login. Here is something that works with active directory (if that's what you are looking for): https://github.com/supertokens/supertokens-node/blob/master/lib/ts/recipe/thirdparty/providers/activeDirectory.ts the reason it's commented out is cause it doesn't support multi tenant AD integration, but would work fine with just a single tenant. Is this what you were looking for? - n
NathanSkoot
03/07/2022, 11:38 AMMorning Is there a reason that the MySql tables config adds a
table (https://supertokens.com/docs/passwordless/quick-setup/database-setup/mysql) but the PostgreSQL doesn't (https://supertokens.com/docs/passwordless/quick-setup/database-setup/postgresql)? Seems likepasswordless_users
is used by both implementations and not adding the table caused some errors in our implementation (but that could just be us)passwordless_users - r
rp
03/07/2022, 11:40 AMAh! That's a mistake in our docs. The postgresql plugin does add the table though: https://github.com/supertokens/supertokens-postgresql-plugin/blob/master/src/main/java/io/supertokens/storage/postgresql/queries/PasswordlessQueries.java#L49 - r
rp
03/07/2022, 11:40 AMWe will fix the docs. Thanks - n
NathanSkoot
03/07/2022, 11:40 AMThanks @User , much appreciated - r
rp
03/07/2022, 11:44 AMCopy codeCREATE TABLE IF NOT EXISTS passwordless_users ( user_id CHAR(36) NOT NULL, email VARCHAR(256) CONSTRAINT passwordless_users_email_key UNIQUE, phone_number VARCHAR(256) CONSTRAINT passwordless_users_phone_number_key UNIQUE, time_joined BIGINT UNSIGNED NOT NULL, CONSTRAINT passwordless_users_pkey PRIMARY KEY (user_id) ); - r
rp
03/07/2022, 12:52 PMhey! - t
teebot
03/07/2022, 12:54 PMHi ! We do not store the supertokens userId in our DB. Is there a way "search" for the userId with some criteria like phone (which is in our users sessions) ? - t
teebot
03/07/2022, 12:55 PMfor context I'm trying to use revokeAllSessionsForUser - r
rp
03/07/2022, 1:19 PM@User You could do the following: - We have a function called
(https://supertokens.com/docs/nodejs/modules/recipe_passwordless.html#getUserByPhoneNumber). - Loop through all users using our user pagination functions and filter the ones you want to take action on. - Download the user CSV file from the dashboard and filter the ones in there to find the right user.getUserByPhoneNumber - t
teebot
03/07/2022, 2:07 PMthx @User ! I'll try that - t
teebot
03/07/2022, 3:09 PMI'd like to enforce having one logged in user per device. To do this, on my consumeCodePOST passwordless overrideCopy code
I was thinking of revoking all sessions for the user before creating a new one. + communicating to the user that a new login attempt happened ifoverride: { apis... consumeCodePOST
returns at least one existing handle. does it sound good to you @User ?revokeAllSessionsForUser - r
rp
03/07/2022, 3:14 PMThis would work @User . But a better flow might be to tell the user to logout of all their devices and then try to login again. This way, they are given an opportunity to decide is they want to actually login again. Plus in the way you described, the other sessions would still be active until they have to be refreshed. If however, the users logout themselves from the other devices, then you have truly enforce what you are looking for. If you would want to continue with your method, there is a race condition in which someone can consume two codes at the same time and then (with very low probability), get logged into both devices. So you also want to check the number of sessions after calling the original implementation, and if it's more than one, then perhaps revoke both. This would lead to the user getting logged out of all their devices eventually, but it's super low probability anyway.. they can login again. - t
teebot
03/07/2022, 3:16 PM> a better flow might be to tell the user to logout of all their devices and then try to login again In our case this more of a malicious abuse of our system - t
teebot
03/07/2022, 3:16 PMso usually they will not comply to that - r
rp
03/07/2022, 3:17 PMFair. - t
teebot
03/07/2022, 3:19 PMI could decrease the access token validity from 3600 to something like 240 - t
teebot
03/07/2022, 3:19 PMthere's going to be more roundtrips to the supertokens db but I guess it will be acceptable - r
rp
03/07/2022, 3:19 PMYea.. that's not an issue as such, - t
teebot
03/07/2022, 3:19 PMđź‘Ť - u
user
03/07/2022, 5:27 PMI can not create an account. I have clicked on "get started" then "create an app" I see a blank page with following message: > Thank you for your interest. > Please use a desktop computer to sign up and get started. - r
rp
03/07/2022, 5:28 PMAre you using a mobile phone? If not, what’s your desktop’s resolution? - u
user
03/07/2022, 5:29 PMLinux Desktop with Brave or Firefox. Resolution should be big enough... - u
user
03/07/2022, 5:30 PMOh right... just a little bigger and it works. But on my laptop I split my Apps. - r
rp
03/07/2022, 5:30 PMAh I see. - r
rp
03/07/2022, 5:31 PMWell.. after signing up, it’s just the core instance and its config details. So once you are setup, you will rarely need to visit that anyway. - u
user
03/07/2022, 5:33 PMVery well. Thanks. - b
ButtonPusher
03/09/2022, 12:05 AMHello, I was looking at implementing SuperTokens on my webapp, is it also possible to authenticate with an android app? Thanks