Channels
#support-questions
Title
e
EdwinN1337
05/27/2022, 1:01 PMBlegh, trying to login with google auth, im getting a 500 response.. Can't figure out why
Anyone has any idea: my server logs:
shop-web:dev: error - Error: Request failed with status code 400r
rp
05/27/2022, 1:04 PMhey @EdwinN1337
How have you configure the google.init on the backend? And what redirectURI have you configured on the google dashboard?
e
EdwinN1337
05/27/2022, 1:07 PMHello!
on the backend i configured it like:
Copy code
js
appInfo,
recipeList: [
ThirdPartyEmailPassword.init({
providers: [
Google({
clientId: process.env.GOOGLE_CLIENT_ID,
clientSecret: process.env.GOOGLE_CLIENT_SECRET,
}),
],the
emailPasswordIs it because of the callbackURI? It's a nextjs page, so initial SSR?
I'm trying to build custom UI
n
nkshah2
05/27/2022, 1:10 PMSo Google usually throws a 400 if the redirect uri hasnt been ocnfigured correctly
Can you post the response for when you call the
/authorisationurle
EdwinN1337
05/27/2022, 1:13 PM Copy code
js
{
"status": "OK",
"url": "https://accounts.google.com/o/oauth2/v2/auth?scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email&access_type=offline&include_granted_scopes=true&response_type=code&client_id=710520535551-0esc730d0evhv0k77d13v3v3sutla97s.apps.googleusercontent.com"
}ah wait wrong response
moment
Copy code
js
{"status":"OK","url":"https://accounts.google.com/o/oauth2/v2/auth?scope=https%3A%2F%2Fwww.googleapis.com%2Fauth%2Fuserinfo.email&access_type=offline&include_granted_scopes=true&response_type=code&client_id=710520535551-0esc730d0evhv0k77d13v3v3sutla97s.apps.googleusercontent.com"}be right back (30mins!)
n
nkshah2
05/27/2022, 1:21 PMAh I think you are using the credentials for Google from the documentation correct? If thats the case, before redirecting to the URL just add a "redirect_uri" query param to the URL with the one you configured on Google
e
EdwinN1337
05/27/2022, 1:24 PMI added redirect_uri, using my own credentials
I followed the blog where u implement GitHub
n
nkshah2
05/27/2022, 1:31 PMCan we get on a call to debug this? Will be easier
e
EdwinN1337
05/27/2022, 1:34 PMYeah ofcourse, I'm back in around 40mins
n
nkshah2
05/27/2022, 1:35 PMAlso can you send the full URL you are redirecting to (including the query params)
Also in your error handler, the response object
datae
EdwinN1337
05/27/2022, 2:38 PMDo you mean this?
Copy code
js
const response = await getThirdPartyAuthUrl({ thirdPartyId: 'google' })
if (response.status === 'OK') {
const url = new URL(response.url)
url.searchParams.append('redirect_uri', 'http://localhost:3004/auth/callback/google')
// await openAppBrowser(url.href)
}Im back btw
n
nkshah2
05/27/2022, 2:39 PMYep, the value of
urlI'm available if you want to call
How can I log the response? The api call made to google is from one of the supertokens endpoint?
Copy code
js
await superTokensNextWrapper(
async (next) => {
await middleware()(req, res, next)
},
req,
res,
)n
nkshah2
05/27/2022, 2:56 PMIn your servers default error handler (you might have to google this for nextjs) the response will have a
datar
rp
05/27/2022, 2:58 PMJust add a try / catch around
await superTokensNextWrapper(...)@nkshah2 there is no default error handler for nextjs API
e
EdwinN1337
05/27/2022, 3:04 PMcopy/pasted
[[...path]]shop-web:dev: data: { error: 'invalid_grant', error_description: 'Bad Request' }
n
nkshah2
05/27/2022, 3:11 PMRight, google is cryptic with their errors. I would double check with all the values and settings in your google OAuth app
e
EdwinN1337
05/27/2022, 3:13 PMHmm, seems like it works
Havent changed anything? weird
shop-web:dev: data: { error: 'invalid_grant', error_description: 'Bad Request' }r
rp
05/27/2022, 3:13 PMI think I got the problme
e
EdwinN1337
05/27/2022, 3:14 PMmaybe a nice to add, to capture those errors ;)?
r
rp
05/27/2022, 3:14 PMThe authorisationurl get api responds with a url that doesn’t have a redirect uri appended to its query params (that’s added by the frontend SDK)
So if u query that via postman and then navigate to it manually, then login via google, that flow would be broken
But if you use the frontend SDK, it would add the redirect_uri to the url and then exactly the same flow would work
e
EdwinN1337
05/27/2022, 3:15 PMhad the same error on localhost tho, 500...
cant reproduce because magically it works, only if i refresh browser I can this error
r
rp
05/27/2022, 3:16 PMRefresh when?
e
EdwinN1337
05/27/2022, 3:16 PMso I land on the
/auth/callback/googleif i refresh the page with the url
i get the error
wait i'll show moment
r
rp
05/27/2022, 3:16 PMRight. So if you refresh the page, it won’t work cause it will try to consume the code again and fail
Cause it’s already consumed once
And these are one time use codes from google
e
EdwinN1337
05/27/2022, 3:17 PMYeah, right... Problem if u dont catch it
so if u dont wrap it with a try/catch (which i didnt, since i just copy/paste docs)
its hard to figure
while writing custom ui 🙂
r
rp
05/27/2022, 3:17 PMHmm
I see
e
EdwinN1337
05/27/2022, 3:18 PMstill the first request should work, but somehow didnt
thanks again! 😄
r
rp
05/27/2022, 3:19 PMIs the problem solved? I’m confused
n
nkshah2
05/27/2022, 3:19 PMSounds like your second run worked?
e
EdwinN1337
05/27/2022, 3:29 PMYeah sorry, problem solved!
Thank you 😄
so postman won't work thats the conclusion
+ keys that already been used
but since i had no try/catch in nextjs handler, i couldnt figure it out
n
nkshah2
05/27/2022, 3:31 PMAh well, anyways glad you got it to work
r
rp
05/27/2022, 3:38 PMPostman can work if you append the redirect_uri to the returned url (for the authorisationurl API)