hi guys! i have problem with email verification. /signup request goes well, but after that /verify returns 401

Hey @art1c0

not sure what you mean. email is not being sent because of this /verify request fails - backend returns 401 with body { "message": "unauthorised" }

ah right. ok

as a screenshot?

and the request headers for the /verify request?

yes

ah i see. So safari deosn't support same site none

basically it's Session.init({ tokenTransferMethod: "header" }) ?

yea

yes it works now! thank you so much! please consider writing this in the docs about Safari

it's already there in certain parts + it's only applicable when the api domain and website domain are not in the same base domain - which is rare.

it actually happens to me after i deployed backend to the remote server, though it worked locally

right yea. so the remote server is on a different domain than the website you loaded causing sameSite to be none - which breaks cookie based login on safari.

this is actually weird, according to the docs https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie/SameSite SameSite=None should work in safari 13 and higher on mac os catalina and higher, but i use safari 16.3 on mac os ventura, which is much higher

yeaaaa... just safari things

🙂

cause you are supposed to send those requests based on your custom UI flow.

oh i will appreciate if you point me to this part of the docs, so i can forward it to out react dev

which recipe are you using?

ThirdPartyEmailPassword

i guess you mean calling sendVerificationEmail() ?

yes

ok thank you very much!

to you as well 🙂