#auth0

Hi, with active directory login, and using the login widget and I'm on the network, it somehow "detects" that I'm on the network. and says "you are connected from your corporate network". How is this done? Is it via IP of the ldap connector or the fact that the machine is on the domain?

Hi

anyone here?

Also interested in why this code doesn't automatically login active directory users who previously logged in

widget.getClient().getSSOData(function(err, ssodata) {

// if there is an SSO session, auto-login

if (ssodata.sso) {

widget.getClient().login({connection: ssodata.lastUsedConnection.name});

}

});

?

Has the syntax for setting up the widget changed?

ah

there's login-widget and login-widget2

I assume 2 is the latest and greatest/

?

yes, https://docs.auth0.com/widget

ah, that 'light blue' "this is deprecated" is pretty easy to miss

big red text - font size 30 would be appreciated

:)

we are currently working on the next version which is in beta

ok, thanks

under connections, I can't seem to open the setup options for active directory anymore

edit works

but setup not working

rob_curtis: one sec, let me check

rob_curtis: yes, it seems ir broken, we will fix it ASAP

I just inspected, got the url, so no biggy

hello

I've followed the https://github.com/auth0/auth0-angular tutorial, but angular 1.3 can't load the auth0 module, auth0 works with angular 1.3?

heliton, I don't think we've tried it on 1.3. what error ar eyou getting?

heliton: hi

Hi all,

if im using the node passport strapegy to authorize a app, how can i then get a jwt to query a api?

or am i better just using the oauth bearer to query the api

?

hi Sofia

a hey hey, sorry for being a pain, this is the last issue ive got, im nearly done :)

if im using the node passport strapegy to authorize a app, how can i then get a jwt to query a api?

or am i better just using the oauth bearer to query the api?

one sec

okays

you are not a pain, don't worry

i feel like it, ive had more questions nearly every day for the last 3 weeks

see the function(accessToken, idToken, ...

second parameter should be

so the idtoken is the jwt?

yes

okay thanks :)

try that and let me know what you get

okay

because I don't recall exactly if that works as expecte

okays, just waiting for a vagrant up

while thats doing that is there any way to allow apps to sign on with 0auth without being able to edit user info?

its done starting but i noticed in mine that function reads:

function(accessToken, refreshToken, extraParams, profile, done) {

return done(null, profile);

});

which param would it be there?

refreshToken would be

but it doesn't matter how it's called

okay, it was just because i noticed it had more params than the one on github :)

yes good point... that's why I wasn't sure

let me know what you see in refreshToken and extraParams

access_token: '10ql9sQLAkDIp6kHH7FLKhf8jltZBrx1TJnWfqvEfi3QkgIyZChV5p6JNrlOzkvc'

id_token: 'eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJfaWQiOiJhNDZhMjE3MjI0ODA5NTJkMmI3MzE2NDFkNGFiMTU0YyIsImVtYWlsIjoic29maWFAY29tcG9zaXRldWsuY28udWsiLCJlbWFpbF92ZXJpZmllZCI6dHJ1ZSwiY2xpZW50SUQiOiJBTWpOaFN0cFVtbmVMY0RjNjhmT081VVlpakxlYWlIRCIsInBpY3R1cmUiOiJodHRwczovL3NlY3VyZS5ncmF2YXRhci5jb20vYXZhdGFyLzkxNTk5ZGEyNjkxMmU0NmJmMmQ1ZTlhODIyNzQ2YzIxP3M9ND

gwJnI9cGcmZD1odHRwcyUzQSUyRiUyRnNzbC5nc3RhdGljLmNvbSUyRnMyJTJGcHJvZmlsZXMlMkZpbWFnZXMlMkZzaWxob3VldHRlODAucG5nIiwidXNlcl9pZCI6ImF1dGgwfDUzZjRhMmI2YzUwNWZlZmE2ZTAwMDMwYyIsIm5hbWUiOiJzb2ZpYUBjb21wb3NpdGV1ay5jby51ayIsIm5pY2tuYW1lIjoic29maWEiLCJpZGVudGl0aWVzIjpbeyJ1c2VyX2lkIjoiNTNmNGEyYjZjNTA1ZmVmYTZlMDAwMzBjIiwicHJvdmlkZXIiOiJhdXRoMCIsImNvbm5lY3Rpb24i

OiJVc2VybmFtZS1QYXNzd29yZC1BdXRoZW50aWNhdGlvbiIsImlzU29jaWFsIjpmYWxzZX1dLCJjcmVhdGVkX2F0IjoiMjAxNC0wOC0yMFQxMzoyOToyNi44NTdaIiwiZ2xvYmFsX2NsaWVudF9pZCI6Inc0Z0huQVdZR3Y5bTg1Y2RIWHJmT2dwT09vWjhWS1lHIiwiaXNzIjoiaHR0cHM6Ly9wcm9wZXJ0eXN0b3JrLmF1dGgwLmNvbS8iLCJzdWIiOiJhdXRoMHw1M2Y0YTJiNmM1MDVmZWZhNmUwMDAzMGMiLCJhdWQiOiJBTWpOaFN0cFVtbmVMY0RjNjhmT081VVlpak

xlYWlIRCIsImV4cCI6MTQwOTI3MDUyOCwiaWF0IjoxNDA5MjM0NTI4fQ.A5eskoCOeUS1Vu-lDNW1RiK0eT8_SxUKjo3ILEvyMzY'

refresh token = accesstoken

so access_token is first param, id_token is second param?

id token = extraParams

second and third params

ok so from this function(accessToken, refreshToken, extraParams, profile, done)

accessToken is 10ql9sQLAkDIp6kHH7FLKhf8jltZBrx1TJnWfqvEfi3QkgIyZChV5p6JNrlOzkvc

yep

refreshToken is ??

the id_token?

or id_token is an element of the extraParams

extraParams.id_token

this is what i did:

function(accessToken, refreshToken, extraParams, profile, done) {

console.log(refreshToken);

console.log(extraParams);

return done(null, profile);

});

refresh token was 10ql9sQLAkDIp6kHH7FLKhf8jltZBrx1TJnWfqvEfi3QkgIyZChV5p6JNrlOzkvc

extraParams was the long 1

console.log(extraParams.id_token)

try that

eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJfaWQiOiJhNDZhMjE3MjI0ODA5NTJkMmI3MzE2NDFkNGFiMTU0YyIsImVtYWlsIjoic29maWFAY29tcG9zaXRldWsuY28udWsiLCJlbWFpbF92ZXJpZmllZCI6dHJ1ZSwiY2xpZW50SUQiOiJBTWpOaFN0cFVtbmVMY0RjNjhmT081VVlpakxlYWlIRCIsInBpY3R1cmUiOiJodHRwczovL3NlY3VyZS5ncmF2YXRhci5jb20vYXZhdGFyLzkxNTk5ZGEyNjkxMmU0NmJmMmQ1ZTlhODIyNzQ2YzIxP3M9NDgwJnI9cGcmZ

D1odHRwcyUzQSUyRiUyRnNzbC5nc3RhdGljLmNvbSUyRnMyJTJGcHJvZmlsZXMlMkZpbWFnZXMlMkZzaWxob3VldHRlODAucG5nIiwidXNlcl9pZCI6ImF1dGgwfDUzZjRhMmI2YzUwNWZlZmE2ZTAwMDMwYyIsIm5hbWUiOiJzb2ZpYUBjb21wb3NpdGV1ay5jby51ayIsIm5pY2tuYW1lIjoic29maWEiLCJpZGVudGl0aWVzIjpbeyJ1c2VyX2lkIjoiNTNmNGEyYjZjNTA1ZmVmYTZlMDAwMzBjIiwicHJvdmlkZXIiOiJhdXRoMCIsImNvbm5lY3Rpb24iOiJVc2VybmF

tZS1QYXNzd29yZC1BdXRoZW50aWNhdGlvbiIsImlzU29jaWFsIjpmYWxzZX1dLCJjcmVhdGVkX2F0IjoiMjAxNC0wOC0yMFQxMzoyOToyNi44NTdaIiwiZ2xvYmFsX2NsaWVudF9pZCI6Inc0Z0huQVdZR3Y5bTg1Y2RIWHJmT2dwT09vWjhWS1lHIiwiaXNzIjoiaHR0cHM6Ly9wcm9wZXJ0eXN0b3JrLmF1dGgwLmNvbS8iLCJzdWIiOiJhdXRoMHw1M2Y0YTJiNmM1MDVmZWZhNmUwMDAzMGMiLCJhdWQiOiJBTWpOaFN0cFVtbmVMY0RjNjhmT081VVlpakxlYWlIRCIsI

mV4cCI6MTQwOTI3MDkyMiwiaWF0IjoxNDA5MjM0OTIyfQ.HjDgRBba3g5sgMBSQyO3kXu3XS6DpJURZGhEL7AQbJ0

ok that's it then

I will add to the tutorial

that's the JWT

okay thanks :)

thank you!

and the refresh token is valid with the jwt?

that's the access token

refreshToken should be null/undefined

but you only want the id_token (JWT)

okay thanks :) did you see my other question?

which one

while thats doing that is there any way to allow apps to sign on with 0auth without being able to edit user info?

I don't understand the question

i want my app to be a oauth provider similar to facebook/twitter, but to allow apps to sign on with 0auth (for example using passport) they would require the secret