@le-nnyburkdoll

This guide might be helpful to you: https://fusionauth.io/docs/v1/tech/guides/user-search-with-elasticsearch

Thanks,
Dan

@bryan

Thanks for using FusionAuth!

I think this GitHub issue might be related to what you see: https://github.com/FusionAuth/fusionauth-issues/issues/2233

Please take a look and let us know.

Dan

@ismail

Thanks for using FusionAuth!

I don't have any experience with SvelteKit, but this new NextJS quickstart might be of interest to you:

https://fusionauth.io/blog/2023/04/26/nextjs-single-sign-on

Dan

@twilkinson

Thanks for using FusionAuth!

Did you get this sorted out?

Dan

@mattcrox

Thanks for using FusionAuth!

1.32.1 is pretty old version (released in Dec 2021). Do you run into the same issue with more recent versions?

@rafal-glebocki
I'm working through the same issue. I've setup an Application Gateway but it doesn't appear to be working. Would you share your configuration?

@vinhdat82

You can definitely use FusionAuth as an OpenID Connect provider. The callback is https://your.fusionauth.server/oauth2/callback

We only support front channel logout.

Can you share more details about the application you are trying to use FusionAuth for? What is the framework, etc?

That might help me direct you to some better documentation.

@heitordanilo2003

Welcome to the FusionAuth community!

It isn't possible to create new tables inside FusionAuth. However, you have a few options within the current supported extension points.

You can correlate between two different databases, as you currently are. You can use the user.data and user.registration.data fields. These are arbitrary JSON objects and you can define your own schema inside them. They are searchable. You can use Entity Management. Entity Management lets you define your own entities (which also have data fields) and relationships between users and entities. This is paid functionality that requires a license key.

Hope that helps.
Dan

@jvadaliya FusionAuth enforces MFA for users at the tenant or application level, but not the specific user.

You can file a feature request here: https://github.com/fusionauth/fusionauth-issues/issues

You can also make an API call in your application after the user has logged in to force MFA for only certain users; this is called step up auth: https://fusionauth.io/docs/v1/tech/guides/multi-factor-authentication#step-up-auth

Hope this helps.

@dan
I faced similar kind of issue last time, I am still searching for some proper solution.

@joey-zhang

I'm not sure what you mean? Can you please explain further?

@ryan-2 Hmmm.

I searched our GH issues list: https://github.com/fusionauth/fusionauth-issues/issues and didn't see that as an issue. I also reviewed our import API doc and didn't see it either.

Can you please share more details, including the version of FusionAuth you were using and repro steps? That would be be helpful in characterizing this issue in more detail.

@dan figured out a workaround based of the auth0 documentation.

I have added a new route in our API gateway as the callback url in fusionauth. This is the RelayState (or redirect_uri with the acs) that we are providing for our IdP providers.

The route for example is now:

/signin-saml-oidc?code=j6rOnUBViLU1kR5UA2eKK_UTzc-cO2auei53TJU9X8g&locale=en_US&userState=Authenticated

Which we just issue a ChallengeAsync which then redirects back to fusionauth and then redirects back to signin-oidc with the code and state parameter.

await this.HttpContext.ChallengeAsync()

Obviously this isn't ideal & add's another redirect in the flow, but it works as the user is authenticated in FusionAuth & our gateway is triggered the challenge (so generating the state)

FusionAuth Version: 1.44.0

@hazelmarissa1 Since you are using cleanspeak, I'd suggest filing a support ticket if you are having issues.

Log into your Cleanspeak account from here: https://account.cleanspeak.com/ and you should have options to file a ticket.

This forum is for FusionAuth users, so you probably won't get much help here. 🙂

Nope.

FusionAuth pays for an organization and the FusionAuth dockerhub images will remain freely available.

We have started to document API gateway integrations with FusionAuth here: https://fusionauth.io/docs/v1/tech/developer-guide/api-gateways/

@javi

Here is the answer I got on SO: https://stackoverflow.com/questions/75665818/how-can-i-expose-fusionauth-on-ubuntu-apache-to-connect-from-browser/75667048#75667048

Question closed!

@m-arlynrasavong Hmmm. Can you share more details?

@dan

Yes, this answers my question, thank you!

There are a couple of things to check:

make sure that you've updated the issuer at the tenant screen: https://fusionauth.io/docs/v1/tech/core-concepts/tenants#general make sure you are using an asymmetric keypair to sign the id token. If you are using HMAC, which is the default for FusionAuth, you have to share a secret. Asymmetric algorithms like RSA256 are what proxies typically need (so they don't have to have the signing secret). More here: https://fusionauth.io/docs/v1/tech/core-concepts/applications#jwt and here: https://fusionauth.io/docs/v1/tech/core-concepts/key-master

Hope that helps.