Paul Greenberg

icon indicating a website link https://www.linkedin.com/in/greenpau/

icon location New York, NY icon location Love tinkering with tech! Current interests are Blender, Generative AI for 3D environments

Results 443 comments of Paul Greenberg

breakfix: respect password policy from users.json

@tribor , I will soon begin the redesign of users database. Will take this into account. Thank you for reporting this!

Can not create locally hosted minimal instance for debug/test/error reproduction

@MrChadMWood , see https://docs.authcrunch.com/docs/authenticate/auth-cookie#intra-domain-cookies I suspect `cookie insecure on` is missing. You might also need `cookie domain localhost`. You really should not, but people had that issue. See this issue...

NetSuite as a OIDC Provider

@Shaun-York , probably yes. Please set up an application for me to test with. Then, connect with me offline.

breakfix: RBAC can't access [realm_access-roles]

> The claims shown next are from the OIDC id token @qrkourier , see the below source code references. https://github.com/search?q=repo%3Agreenpau%2Fgo-authcrunch%20id_token&type=code Happy to jump on google meet to troubleshoot. Feel free...

Kinde Support

@andrefmarques , please confirm that the login flow works. have you tried “nested” injections? https://docs.authcrunch.com/docs/authorize/headers#nested-data-source

Kinde Support

> I haven't tried nested injections since the fields are not appearing in whoami's userinfo @andrefmarques , please try configuring the following and see whether it propagates. ``` inject header...

Kinde Support

@andrefmarques , I suggest you somehow bring these props to `userinfo` field. Otherwise, it will not work out of the box.

preferred_username is not provided when using generic oauth

> If I am understanding the flow correctly, when caddy security requests authorisation from my OIDC provider (pocket-ID), it responds with a JWT token that contains all claims, then if...

preferred_username is not provided when using generic oauth

@jmadden91 , yes, but there is not such thing as `usr.Claims.preferred_username`. The user is here: https://github.com/greenpau/go-authcrunch/blob/7241955902c82cb02a9a57df8962103d0a198b98/pkg/user/user.go#L43-L62 The claims are here: https://github.com/greenpau/go-authcrunch/blob/7241955902c82cb02a9a57df8962103d0a198b98/pkg/user/user.go#L89-L108 There is no good solution here. Probably will not...

preferred_username is not provided when using generic oauth

There is also this one for custom headers. https://github.com/greenpau/go-authcrunch/blob/7241955902c82cb02a9a57df8962103d0a198b98/pkg/authz/authenticate.go#L301-L306 Which it looks like these is a way to inject random thing from `mkv`, which holds a map of key-values associated...