Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
`Auth.confirmSignIn` throws `UserNotFoundException` upon SMS code confirm
See original GitHub issueDescribe the bug
I am attempting to implement SMS MFA with the API directly (not aws-amplify-react-native Components). After setting up the MFA as described below, I sign out of the User, sign back in, receive the SMS code, and try to confirm it. Instead of succeeding, Auth.confirmSignIn throws a UserNotFoundException.
To Reproduce Steps to reproduce the behavior:
- Sign into a Cognito account that does not yet have MFA set up.
const user = await Auth.signIn(username, password);
- We have signed into the user. Our tokens are there, our account shows up in the User pool list. The user absolutely exists.
- Get 10-digit phone number from input, set up MFA with
const phone = '5553334444';
const user = await Auth.currentAuthenticatedUser();
const result = await Auth.updateUserAttributes(user, {
phone_number: `+1${phone}`,
});
await Auth.setPreferredMFA(user, 'SMS');
- Sign out
Auth.signOut();
- Sign back in
const user = await Auth.signIn(username, password);
- Ding ding ding! We get
user.challengeName === 'SMS_MFA'. - Ring ring ring! Code shows up via SMS.
- Let’s confirm sign in.
await Auth.confirmSignIn(user, code, 'SMS_MFA');
- Boom! An error object is thrown:
Object { code: "UserNotFoundException", name: "UserNotFoundException", message: "User does not exist." }
- We are not signed in.
Expected behavior Confirm SMS code, sign into User.
Screenshots None
Smartphone (please complete the following information):
- OS: Android 8.0
- Platform:
react-native - Versions:
react-native@0.59.5,aws-amplify@1.1.29
Additional context Here is some Auth related configuration relevant to our user pool:
- MFA is set to Optional.
- We are using a
UserMigrationLambda, and therefore useauthenticationFlowType: 'USER_PASSWORD_AUTH' - The Lambda imports relevant attributes, but NOT
phone_numberandphone_number_verifiedremainsfalsethroughout. - Users have
phone_numberwrite permissions for all App clients.
Issue Analytics
- State:
- Created 4 years ago
- Comments:9 (1 by maintainers)
Top Results From Across the Web
Top Related Medium Post
Top Related StackOverflow Question
Troubleshoot Live Code
Top Related Reddit Thread
Top Related Hackernoon Post
Top Related Tweet
Top Related Dev.to Post
Top Related Hashnode Post
For anyone else who has this issue, I had a random user sub set as the username in my userpool, but email login.
Auth.signIn()for anyone with MFA enabled returns an object with a username of the email, instead of the sub. I fixed this problem by explicitly setting theusernameof the signIn response to the actual username of the user, which happens to be contained withinchallengeParam.USER_ID_FOR_SRPEssentially:
var user = await Auth.signIn(email, password);user.username = user.challengeParam.USER_ID_FOR_SRP;await Auth.confirmSignIn(user, code, "SMS_MFA");This issue has been automatically locked since there hasn’t been any recent activity after it was closed. Please open a new issue for related bugs.
Looking for a help forum? We recommend joining the Amplify Community Discord server
*-helpchannels or Discussions for those types of questions.