24,635 questions
-1
votes
1
answer
37
views
Spring Authorization Server – /login keeps returning 403 instead of showing login page
I am learning Spring Authorization Server and trying to build a simple OAuth2 Authorization Server without OpenID Connect.
i want to handle the login page myself inside the same Authorization Server ...
- 112
Advice
0
votes
0
replies
50
views
Oauth2 client in spring
Im posting here because cant get a working example of oauth2 client implementation in spring boot 3.5.7
This is my first time ever implementing this type of authentication and cant manage to make it ...
- 23
-4
votes
0
answers
32
views
Facebook OAuth Error: "This app needs at least one supported permission" - Works for Testers but Not Real Users [closed]
I'm Getting This Facebook OAuth Error For Real Users, But It Works Fine For App Testers
Error Message: "It Looks Like This App Isn't Available. This App Needs At Least One Supported Permission.&...
0
votes
0
answers
58
views
Cannot Access OAuth Consent Screen - Keeps Redirecting to auth/overview Page
I'm trying to configure the OAuth consent screen for my Google Cloud project but I keep getting redirected to a different page.
What I'm trying to do:
Configure OAuth consent screen settings (app name,...
0
votes
1
answer
57
views
Protected Remote MCP Server - VS Code
I'm trying to connect vs code to a local MCP server that is using HTTPTransport and is secured by OAuth. It was working fine up to the point I started validating the scope.
builder.Services....
- 362
1
vote
1
answer
70
views
How can I enable Client Credentials grant to secure API endpoints?
I'm trying to enable Client Credentials grant to secure API endpoints. I want to create an API between a database and several websites (and SPAs) so I can monitor what website/SPA calls which ...
1
vote
0
answers
56
views
Unable to complete Amplify v6 Cognito OAuth flow in my Next.js App
I am using Amplify and Cognito's hosted UI Login page to handle my user authentication. I am able to redirect to the cognito hosted page, enter my user credentials, and redirect page to my sign in ...
- 11
0
votes
0
answers
40
views
Pass parameter from Swagger to IdentityServer8 for authentication
I'm using Swagger UI to test APIs that require authentication to IdentityServer8 via OAuth 2.0 implicit flow. Is there any way to pass a custom parameter from Swagger UI to IdentityServer8 during ...
- 6,555
0
votes
1
answer
86
views
Spring Boot OAuth2 with Casdoor behind AWS Lambda + HTTP API v2: state parameter encoding issue
I’m developing a Spring Boot application deployed behind an AWS API Gateway (HTTP API v2) with Lambda (handler based on SpringBootLambdaContainerHandler and HttpApiV2ProxyRequest).
I’m using OAuth2 ...
- 11
0
votes
0
answers
98
views
Gmail API OAuth token expires after a few days, and re-authentication fails for some accounts
I’ve built an app similar to gmass.co/inbox
I'm using gmail.readonly
to help check where our emails land (Inbox, Promotions, Spam, etc.) in specific Gmail accounts before launching email campaigns.
...
- 1
0
votes
0
answers
45
views
Matrix Synapse Azure / Microsoft SSO: what kind of value is saved / Stored from a Azure user (not object-id)
we want to migrate our LDAP users to SSO from our #synapse #matrix server and we have already many users, which are using Microsoft SSO Login. Matrix Synapse uses Authlib and there is a table (...
1
vote
1
answer
94
views
Spring Security: AccessDeniedException with redirecting to the login page without OAuth 2 authentication
I follow the book Pro Spring Security 6 and try to make a simple OAuth 2 authentication. My configuration:
@Configuration
@EnableWebSecurity
public class SpringSecurityConfiguration {
@Bean
...
- 45
1
vote
0
answers
78
views
LinkedIn API: “ACCESS_DENIED - Field Value validation failed in REQUEST_BODY: Data Processing Exception while processing fields [/author]
I'm trying to post a job description to LinkedIn using their ugcPosts API through my Flask backend.
I’ve successfully obtained a 3-legged OAuth 2.0 access token with w_member_social scope.
Token works ...
- 1
0
votes
0
answers
60
views
Angular Service Worker removes session cookie with expired_overwrite cause during OAuth2 login flow
Problem Summary
I'm developing an Angular front-end (v17.3, @angular/service-worker v17.3.2) that interacts with a Spring Cloud Gateway and Spring Authorization Server to handle OAuth2 login. The ...
- 76
0
votes
0
answers
33
views
Google OAUTH. User can consent scopes, that arent configured in cloud console?
I want to use the Google Calendar Integration of Home Assistant. Since I want the integration to have only read_only access, I have configured the oauth scopes as follows
However, when setting up the ...
- 2,010
0
votes
0
answers
44
views
Keycloak: Set value of well known claims during Keycloak token-exchange V1
We are currently working on a token-exchange scenario using Keycloak token exchange support. We plan to exchange a token issued by a realm named realm_A against a token issued for another realm called ...
0
votes
0
answers
82
views
Instagram Graph API: Short-lived token works but long-lived token fails in Laravel
I’m working with the Instagram Graph API in a Laravel backend. My goal is to exchange a short-lived Instagram user token for a long-lived token, but it keeps failing with an error in production ...
1
vote
0
answers
52
views
Google Apps Script getOAuthToken() times out when calling authenticated Cloud Function, despite all configurations checked
Goal:
I am trying to call a 2nd Gen Google Cloud Function (Python, private/requires authentication) from Google Apps Script (GAS).
The Problem:
The execution consistently fails. When ScriptApp....
0
votes
1
answer
43
views
Spring Method loadUser not called from custom OAuthUserService
I am trying to persist data about oauth logged users, but it seems that the method that I have overridden (loadUsers from DefaultOAuth2UserService) is not being called upon login completion. My code ...
0
votes
0
answers
55
views
Extending Users Login Time
I'm working on a web project which using an ASP.NET Core 8 Web API in the backend and Vue 3 as frontend. Authorization process is handled with OAuth 2.0 and the app issues a token (valid for 10 ...
- 2,150
0
votes
0
answers
47
views
Current standard for implementing a username + password login for a web application
After a few years of working at the back of the backend, I'm back working on a full-stack project. We need a username + password login with MFA which I'll use a TOTP for. There will be no third-party ...
- 1,411
0
votes
1
answer
77
views
OAuth2 with PKCE in ReactJS + Azure APIM + Entra ID: How to retrieve AD security groups in the token?
We’re beginners with Azure API Management (APIM) and Entra ID.
Context:
Users are on an intranet using Windows 11.
A new ReactJS SPA needs to call our Azure APIM.
Access to the backend should be ...
- 533
1
vote
0
answers
57
views
Facebook OAuth with Appwrite Cloud fails: "Something went wrong" after login redirect
I’m integrating Facebook login in my Flutter app using Appwrite Cloud. Google OAuth works fine, but I’m stuck with Facebook.
Here’s what happens:
When I log in with Facebook, the popup opens, I click ...
- 1,353
0
votes
1
answer
165
views
not receiving email in GoogleSignInAccount object
I am using google_sign_in 7.1.1 package to implement oauth with google in my flutter app.
I've created oath client id using firebase authentication also added sha-1 fingerprint to app configuration.
...
1
vote
0
answers
49
views
Autodesk APS OAuth invalid_scope when requesting issues:read or offline_access
I created a new Autodesk APS app with Client ID:
ap3k3LvbSEKgACbnlk4lt6LryCVckkKtfK5SbXRr7vQVdUJ4
The app is configured in the APS Developer Portal with Autodesk Construction Cloud API enabled, and it ...
- 11