Issue I’d like to put my app into maintenance mode but still have admins / moderators be able to log in and use the site. Two reasons: I’m making some changes within the app that are best applied using the
Continue readingTag: authorization
[SOLVED] How to set Relogin on JWT expire MERN?
Issue I am facing an issue, my app is getting crashed with JWT Token Expired Error. I have changed the secret key also but still same issue I am facing. Here is the code : Mddleware: const auth = async
Continue reading[SOLVED] Preflight error when using Authorization header on iOS 15.5/Xcode – [email protected]
Issue I’m having problems with my cordova Project on iOS 15.5 Right now I’m trying to verify an user login on IIS with standardauthentification enabled. Here the code from the webserver. <?php // Prüfen, ob Benutzeranmeldung über IIS erfolgt ist
Continue reading[SOLVED] How can I find the desired client_id and client_secret values for the appleid.apple.com/auth/revoke endpoint?
Issue I want to use account deletion feature for users logged in with Apple REST API in my project. What values do the client_id and client_secret values specified in the curl request correspond to in my iOS application? curl -v
Continue reading[SOLVED] @PreAuthorize returns 403
Issue I have a following method in the controller @GetMapping("/hello") @PreAuthorize("hasRole(‘ADMIN’)") public String hello() { return "Hello " + JWTRequestFilter.UserClaim; } When a user who has the ADMIN role tries to access the /hello, 403 is returned. I have enabled
Continue reading[SOLVED] How to get Refresh Token from Spring Authorization Server sample
Issue The official sample Spring Authorization Server returns an access_token and id_token by default for Oauth 2.1 with PKCE https://github.com/spring-projects/spring-authorization-server/tree/main/samples/default-authorizationserver Is it possible that the endpoint /oauth2/token also returns a refresh_token in the response? What changes or configuration would I
Continue reading[SOLVED] AccessToken does not get invalid – Spring OAuth2
Issue i set up spring oauth in my project and authentication seems to work. After testing using PostMan i saw that the AccessToken can be used even after beeing expired…it does not get invalid and the user can still use
Continue reading[SOLVED] display html pages to logged in users only
Issue I’ve made a simple authentification using JS Fetch api , but the problem now is I don’t know how can I secure my html pages ( I mean to not allow users who aren’t logged in to view those
Continue reading[SOLVED] Can't pass authorization with AJAX request on JS
Issue I’m trying to send a basic AJAX request through browser console. The task demands an authorization so I’ve got a login and a secret key for the request. My code: var xhr = new XMLHttpRequest(); xhr.open(‘POST’, ‘https://api.mindbox.cloud/v3/operations/sync?endpointId=hh.ru&operation=get.user’, true, ‘login’,
Continue reading[SOLVED] How to decode "state" request parameter sent by AWS Cognito?
Issue A couple of months ago, I had been using the state request parameter that AWS Cognito sent when requesting /authorize of my authorization server. I had used it for sending extra information from AWS Cognito to my authorization server.
Continue reading