Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Auth in example app needs all users' required attributes
See original GitHub issueCurrently when a request to /users/login is made in the social-network example all notNullable attributes must be there or Lux will reject the request due to missing attributes. This is not the expected behaviour when authenticating with, say, an email and password.
Could be fixed in multiple ways of course:
- Update the example to use basic auth via headers
- Think of a solution within Lux to allow for missing data in some cases
Issue Analytics
- State:
- Created 7 years ago
- Comments:5 (5 by maintainers)
Top Results From Across the Web
Create an ASP.NET Core app with user data protected by ...
Learn how to create an ASP.NET Core web app with user data protected by authorization. Includes HTTPS, authentication, security, ASP.
Read more >Enable user attributes for SAML apps | Asgardeo Docs - WSO2
Select user attributes You need to first specify the user attributes required for an application. This ensures that when a user logs in,...
Read more >User pool attributes - Amazon Cognito - AWS Documentation
Attributes are pieces of information that help you identify individual users, such as name, email address, and phone number. A new user pool...
Read more >Customizing authentication in Django
User functions, the backend auth functions all take the user object, ... That allows each app to specify its own user data requirements...
Read more >Knowledge Base - Customer Support - OneLogin
This means that you can quickly add new users to multiple apps and ... For example, you might map the Department attribute "Sales"...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
I was referring to using the meta property for the request however, that would still require whitelisting via the
Controller#queryarray. Let me think about this one for a bit. I can’t determine if this is a bug or a gap in the API.I have “bypassed” this by creating a separate (model-less)
authcontroller. I might update the social-network example in lux-jwt to reflect this change as I think it’s a good one. This way all auth stuff like token refresh is accessible via/auth/*and is also easier/more transparently excludable from auth with lux-unless.