blockexplorer
01/08/2023, 8:54 PMrp
01/09/2023, 4:25 AMFlyingFox
01/09/2023, 8:54 AMsendEmail
fn to redirect to /auth/verify
on my API (not the frontend) so that a very basic (non-SPA) HTML page is served to conduct the consumeCode
and validate the login, but of course the cookies end up on that device (eg. a phone browser). What is the best way to poll for the original login request on the original device and to then have the cookies for the authentication tokens sent to the original SPA, as if the consumeCode fn was called on the original browser?
I'm thinking to use consumeCodePOST
to mark my own DB with the user/preAuthSessionId as logged in, and have the original SPA poll my endpoint for validating that, but then how do I get supertokens to send the token data to the SPA in order that the user can become validated on that device? Many thanks for any advice.Muerte
01/09/2023, 9:18 AMrp
01/09/2023, 11:10 AMrezaamya
01/09/2023, 1:04 PMError: Since your API and website domain are different, for sessions to work, please use https on your apiDomain and dont set cookieSecure to false.
My configuration is like this:
SESSION_MANAGEMENT_CONNECTION_URL="http://supertokens.myapp-development.svc:3567"
SESSION_MANAGEMENT_API_KEY="******-****-****-****-********"
SESSION_MANAGEMENT_APP_NAME="myapp"
SESSION_MANAGEMENT_API_DOMAIN="https://dev.my.app"
SESSION_MANAGEMENT_WEBSITE_DOMAIN="https://dev.my.app"
SESSION_MANAGEMENT_API_BASE_PATH="/api"
SESSION_MANAGEMENT_WEBSITE_BASE_PATH="/"
SESSION_MANAGEMENT_SESSION_SCOPE=".dev.my.app"
SESSION_MANAGEMENT_COOKIE_SECURE="true"
do you know what is the problem?DanielAtStruggly
01/09/2023, 1:28 PMDalai Llama
01/09/2023, 3:40 PMrp
01/09/2023, 4:12 PMSpatialAestheticsx
01/09/2023, 5:50 PMrp
01/09/2023, 6:16 PMGarrett
01/09/2023, 11:12 PMrp
01/10/2023, 4:13 AMLuis Landi
01/10/2023, 9:30 AMNaf
01/10/2023, 11:35 AMAccess-Control-Max-Age
manually?) and b) my cookies are not being saved in my browser, probably because they are sub domain but I was under the assumption that sub domain cookies are still regarded as samesite?ray.npc
01/11/2023, 2:40 AMporcx
01/11/2023, 5:16 AMrp
01/11/2023, 5:31 AMDavido
01/11/2023, 7:20 AMmukulg22
01/11/2023, 1:03 PMAbhi
01/11/2023, 4:09 PMAbhi
01/11/2023, 5:46 PMresponse originalImplementation.thirdPartySignInUpPOST(input)
.
On doing this, I get an error: Cannot read property 'status' of undefined
.
I know reason behind this but still require to send an object to the client when the pre-check fails. How do I achieve this thing?cosmoecwsa
01/11/2023, 8:01 PMGarrett
01/11/2023, 8:48 PMNoirLime
01/12/2023, 2:02 AMNoirLime
01/12/2023, 2:03 AMNoirLime
01/12/2023, 2:03 AMrp
01/12/2023, 5:05 AMrp
01/12/2023, 5:10 AM