Daniel DeGroff
Daniel DeGroff
Will be delivered via https://github.com/FusionAuth/fusionauth-issues/issues/2989.
Assuming this is a customer request - would this be an application scoped configuration, or would it be per user, or a policy to define a group of users?
Thanks for reporting @rod-martens-alida - appreciate it!
In general you should not use the `user_manager` except under specific circumstances. per: https://fusionauth.io/docs/get-started/core-concepts/roles#application-roles > Please note that because this role can fully manage users, it is similar to admin....
This may be something we want to revisit. However, the current behavior is intended. I can appreciate that this isn't the ideal behavior for everyone. We don't currently have a...
Thanks for the question @badaz. This is on the roadmap for sure, hard to say when we'll get to it. We do a lot of pro-serve and paid support contracts,...
Let's review this issue in context of any changes we are making for this feature. - https://github.com/FusionAuth/fusionauth-issues/issues/2640#issuecomment-1932541711
The current design is that we take whatever the IdP returns and store it. So that means this is working how I expect. We could optionally keep the previous value...
Is it possible you are using the SSO token on the Refresh API? If so, I would expect this to fail as this token is a special refresh token and...
Thanks for the update @pfulop ! The cookie is always preferred. We make the assumption that if this is an HTTP only secure cookie, it is not mutable by JavaScript...