Jamil
Jamil
Is this still relevant / what priority should we give it (what user impact could it have?)
Hmmm, is there any downside to setting it? If it won't cause an issue then yeah we could add it to our startup scripts. Would it make more sense to...
Scratch that, also happens after a fresh sign in. No connectivity to Resources.
Hm, I need to double-check that the user-agent change is not causing this.
It's a portal bug: ``` 2024-06-29T06:20:48.206681Z TRACE wire::api::recv: {"event":"phx_reply","ref":4,"topic":"client","payload":{"status":"error","response":{"reason":"forbidden","violated_properties":["provider_id"]}}} ``` The policy in question was created `2/13/24, 8:36 PM` and has id `c3bfcb33-adeb-4371-aaf7-b18c6493362f` on staging. There are no conditions applied....
~~Seems to be a race condition of some kind. Sometimes it works, sometimes it doesn't, all within the same auth session.~~ I'm not sure actually. I double-checked to ensure the...
Related: portal does not enforce identity_provider condition properly. In the below example I was signed in via Google but was able to access the `news.ycombinator.com` Resource requiring `Magic Link` sign...
Might be related to having multiple Clients signed in? The conditions were applied properly to my Apple clients but not Android.
cc @AndrewDryga, for post-PTO
> Wouldn't it make more sense to devise an auth scheme that works with the headless client? That one is already cross-platform. You mean like a user-present CLI auth scheme?...