Channels
bot-training
community
contributing
general
github-activity
info
introductions
new-releases
random
security
support-questions
welcome-0xdelusion
welcome-aj-ya
welcome-aleksandrc
welcome-alpinjs
welcome-amberlamps1
welcome-andrew-rodriguez
welcome-ankit-choudhary
welcome-anthony-stod-custodio
welcome-call-in
welcome-chwalbox
welcome-claybiokiller
welcome-co7e
welcome-cosmoecwsa
welcome-devdag
welcome-dinso
welcome-drebotelho
welcome-elio
welcome-ernest
welcome-foxbarrington
welcome-fromscratch
welcome-galto4ir
welcome-goetzum
welcome-hay-kot
welcome-himanshu-kukreja
welcome-hossambarakat
welcome-ichikawakazuto
welcome-jahir9991
welcome-jamesl
welcome-jerry123424
welcome-john-oliver
welcome-jonas-alexanderson
welcome-jxyz
welcome-kelvinwop
welcome-kraz
welcome-lancekey
welcome-leoo
welcome-lukeacollins
welcome-m-j-mon
welcome-malik-khoja
welcome-marco
welcome-mardadi
welcome-meshguy
welcome-metamorph
welcome-mike-tectu
welcome-mirzok
welcome-mozomig
welcome-naberyou66_
welcome-nacer
welcome-namratha
welcome-naveenkumar
welcome-nightlight
welcome-nischith
welcome-notankit
welcome-olawumi
welcome-pavan-kumar-reddy-n
welcome-pineappaul
welcome-poothebear
welcome-rick
welcome-samuel-qosenergy
welcome-samuelstroschein
welcome-shubhamgoel23
welcome-shubhamkaushal
welcome-sidebar
welcome-surajsli
welcome-suyash_
welcome-syntaxerror
welcome-tauno
welcome-tawnoz
welcome-teclali
welcome-tls
welcome-turbosepp
welcome-vikram_shadow
Title
d
dbottisti
03/03/2023, 3:43 PMHey there. I'm brand new to SuperTokens and trying to setup the ThirdPartyEmailPassword recipe. I followed the docs, but when visiting the URL returned by
/{apiBasePath}/authorisationurl?thirdPartyId=googler
rp
03/03/2023, 3:46 PMHey @dbottisti
Are you querying the api manually from the frontend?
If yes, don’t do that. Instead, use our frontend SDK
d
dbottisti
03/03/2023, 3:46 PMBut you don't have an SDK for my frontend framework - Elm
r
rp
03/03/2023, 3:46 PMHmm I see.
I think elm has a way to use js as well in it?
d
dbottisti
03/03/2023, 3:47 PMyes, you can interop, but I'd like to avoid it if at all possible
r
rp
03/03/2023, 3:48 PMI would really recommend you to use our frontend SDK into your elm app. It would make lots of things easier. Especially session management
If you don’t want to do that, then you will need to add the redirect uri on your own to the returned url
d
dbottisti
03/03/2023, 3:48 PMOk. My JS isn't very good, so it's kinda hard for me to follow the sample app
r
rp
03/03/2023, 3:48 PM(Our frontend SDK does that, but you’re not using it)
d
dbottisti
03/03/2023, 3:49 PMI see. I'll try working with it as best I can
r
rp
03/03/2023, 3:49 PMIt will be a struggle for you to manage sessions on your own without our frontend SDK. It has a lot of edge cases around session refreshing which we solve for
d
dbottisti
03/03/2023, 3:50 PMI see. Do all of my HTTP requests (for my own endpoints) then need to go through the front-end?
i.e., to "sign" the request?
or is that handled by the browser via the HttpOnly cookies?
r
rp
03/03/2023, 3:51 PMThe brower should add cookies to the request
Are you talking about SSR?
d
dbottisti
03/03/2023, 3:51 PMNo
r
rp
03/03/2023, 3:52 PMRight. So requests made from the frontend will contain the access token
Added by the browser
d
dbottisti
03/03/2023, 3:53 PM(Assuming I'm using cookies rather than the Auth header)
r
rp
03/03/2023, 3:53 PMAs long as you have set credentials include setting in your requests
And if the access token has expired, you get a 401 back
And then you should call the refresh api
d
dbottisti
03/03/2023, 3:53 PMAh, ok - I think I can manage that
r
rp
03/03/2023, 3:53 PM👍
d
dbottisti
03/03/2023, 3:54 PMThanks for your help!
r
rp
03/03/2023, 3:54 PMHappy to help 🙂