Channels
bot-training
community
contributing
general
github-activity
info
introductions
new-releases
random
security
support-questions
welcome-0xdelusion
welcome-aj-ya
welcome-aleksandrc
welcome-alpinjs
welcome-amberlamps1
welcome-andrew-rodriguez
welcome-ankit-choudhary
welcome-anthony-stod-custodio
welcome-call-in
welcome-chwalbox
welcome-claybiokiller
welcome-co7e
welcome-cosmoecwsa
welcome-devdag
welcome-dinso
welcome-drebotelho
welcome-elio
welcome-ernest
welcome-foxbarrington
welcome-fromscratch
welcome-galto4ir
welcome-goetzum
welcome-hay-kot
welcome-himanshu-kukreja
welcome-hossambarakat
welcome-ichikawakazuto
welcome-jahir9991
welcome-jamesl
welcome-jerry123424
welcome-john-oliver
welcome-jonas-alexanderson
welcome-jxyz
welcome-kelvinwop
welcome-kraz
welcome-lancekey
welcome-leoo
welcome-lukeacollins
welcome-m-j-mon
welcome-malik-khoja
welcome-marco
welcome-mardadi
welcome-meshguy
welcome-metamorph
welcome-mike-tectu
welcome-mirzok
welcome-mozomig
welcome-naberyou66_
welcome-nacer
welcome-namratha
welcome-naveenkumar
welcome-nightlight
welcome-nischith
welcome-notankit
welcome-olawumi
welcome-pavan-kumar-reddy-n
welcome-pineappaul
welcome-poothebear
welcome-rick
welcome-samuel-qosenergy
welcome-samuelstroschein
welcome-shubhamgoel23
welcome-shubhamkaushal
welcome-sidebar
welcome-surajsli
welcome-suyash_
welcome-syntaxerror
welcome-tauno
welcome-tawnoz
welcome-teclali
welcome-tls
welcome-turbosepp
welcome-vikram_shadow
Title
c
C9WIN
11/30/2022, 9:33 PMHello, sorry to be a bother. I am setting up a 3rd party solution, and I have the button, can then get to the provider, sign in, and come back. This is where I am stuck. I can't figure out what I should come back to. No matter what I seem to do I just end up back on the signin page. Do I need to make a new express route to come back to and somehow set the login there? Or is there a specific supertoken url I'm supposed to come back to? I tried
[url]/auth/callback/[id]getProfileInfor
rp
12/01/2022, 3:52 AMHey!
@C9WIN
That path is the correct one. The auth-react SDK should capture that path if you have added a provider in the providers list with that id
And assuming that you are using our pre built ui and are able to see the ui on the /auth screen.
c
C9WIN
12/01/2022, 5:06 AMHi @rp! Appreciate the response. Ok, just set it back to the
/auth/callback/[id]http://localhost:3000/auth?rid=thirdpartyemailpassword&error=signinrecipeList: [
ThirdPartyEmailPassword.init({
signInAndUpFeature: {
providers: [
Google.init(),
{
id: "steam",
name: "steam", // Will display "Continue with X"
// optional
// you do not need to add a click handler to this as
// we add it for you automatically.
buttonComponent: <div style={{
cursor: "pointer",
border: "1",
paddingTop: "5px",
paddingBottom: "5px",
borderRadius: "5px",
borderStyle: "solid"
}}>Continue with Steam</div>
}
],
},
}),^ front end
then backend looks similar with starting with google, then
id: "steam",getProfileInfor
rp
12/01/2022, 5:11 AMdoes it call the signinup API call when you are redirected back to the app?
If yes, whats the status code of that call?
c
C9WIN
12/01/2022, 5:15 AMI am not sure? I've set breakpoints all over that section of code in the backend express but none of them ever trigger. Its like once its coming back I don't know where its going.
r
rp
12/01/2022, 5:15 AMcan you see the network tab on chrome?
do you see that API call being made?
And also, the callback for
steam/auth/callback/steamc
C9WIN
12/01/2022, 5:18 AMre: url, it is ya
openid.return_to: http://localhost:3000/auth/callback/steamr
rp
12/01/2022, 5:19 AMright. That seems fine
c
C9WIN
12/01/2022, 5:19 AMabout api called, I dont think so. I see one that starts with this
http://localhost:3000/auth/callback/steam?openid.ns=http%3A%2F%2Fspecs.openid.net%...r
rp
12/01/2022, 5:20 AMhmm. Does google login work?
c
C9WIN
12/01/2022, 5:20 AMya
r
rp
12/01/2022, 5:20 AMok so nothing fundamentally wrong with the setup then
whats the callback URL that steam generates when redirecting you back to the app?
So basically whats the whole URL that you pasted above?
c
C9WIN
12/01/2022, 5:21 AMyes that one but its long with all the attributes i'd want
r
rp
12/01/2022, 5:21 AMcan you send it here?
or DM is to me?
The
http://localhost:3000/auth/callback/steam?openid.ns=htt....c
C9WIN
12/01/2022, 5:22 AMguessing prob ok, but dm'd anyway
r
rp
12/01/2022, 5:22 AMok so it seems that the
codewhich OAuth flow does steam follow?
c
C9WIN
12/01/2022, 5:23 AMon their site it says "Steam's implementation is based upon OAuth 2.0."
tho i have seen talk about OpenID
r
rp
12/01/2022, 5:24 AMyea.. i see. We can only work with authorisation code grant flow at the moment by default. You can customise your way through to making this work, but it wouldn't be simple
or you can wait until our next major release where we support this type of flow (1-1.5 months)
c
C9WIN
12/01/2022, 5:26 AMCould I have the callback url go to a specific url that express could grab, append the code param, then forward to the front end /auth/callback/steam?
or maybe I should just wait if its coming that soon
r
rp
12/01/2022, 5:27 AMyou can. But how will you get the code param? Thats something steam needs to provide
c
C9WIN
12/01/2022, 5:27 AMOk, and am I correct that Twitter auth isn't possible at this time as well?
r
rp
12/01/2022, 5:28 AMyea.. and that probably won't be possible until they support oauth 2.0. Right now, they only allow oauth 1.0
c
C9WIN
12/01/2022, 5:29 AMOk cool. Is there a github issue or some way I can follow along with openid?
or is it for sure just next major release
r
rp
12/01/2022, 5:29 AMyou can follow this one: https://github.com/supertokens/supertokens-node/issues/325
so when this closes, you can use the latest versions of the frontend / backend SDKs, and then the flow should work
c
C9WIN
12/01/2022, 5:30 AMOk cool, thank you so much. So, theoretically I should just keep my code the way it is and potentially in 1-1.5 months it could just work?
r
rp
12/01/2022, 5:31 AMyea. There will be breaking changes to the code, so you might need to change a few things, but yea.. overall it should just work after
c
C9WIN
12/01/2022, 5:31 AMperfect. I really appreciate youre time rp. Thank you for providing some insight.
r
rp
12/01/2022, 5:35 AMhey @C9WIN
can we get your client ID / secret for testing purposes for steam login? You can change them after - would help us to confirm that the new flow works
hey @C9WIN please try this flow instead: https://partner.steamgames.com/doc/webapi_overview/oauth
the flow you are currently trying is not an OIDC / OAuth flow.
the link i sent above gives you a client ID and secret using which our current implementation should work
@sattvikc can help here
c
C9WIN
12/01/2022, 7:07 AMThanks. I believe this is deprecated for openid and this document old.
s
sattvikc
12/01/2022, 7:08 AMhey @C9WIN , what we support is openid connect (which is an extension of oauth 2) however, steam seems to be using openid 2.0, which is a deprecated protocol. I'll see if there is a way we can make this work and get back to you
c
C9WIN
12/01/2022, 7:09 AMAh, gotcha. Thank you!
s
sattvikc
12/01/2022, 7:15 AMhttps://hub.docker.com/r/imperialplugins/steam-openid-connect-provider - I see there is a docker service that can make steam openid compliant. could you try this?
I mean openid connect compliant
c
C9WIN
12/01/2022, 7:19 AMI haven't really used docker much. Would this be something I would set up on my server and route it through every time?
s
sattvikc
12/01/2022, 7:19 AMyes
this is how the flow might look like: your site -> imperial plugin service -> steam -> login -> imperial plugin service -> your site
c
C9WIN
12/01/2022, 7:25 AMAh, ok. thanks!
s
sattvikc
12/01/2022, 7:28 AMpleasure! 🙂