FusionAuth
    • Home
    • Categories
    • Recent
    • Popular
    • Pricing
    • Contact us
    • Docs
    • Login
    1. Home
    2. Groups
    3. administrators
    Group Details Private

    administrators

    Member List
    J jstarbuck
    K kim.maida
    S spencer 0
    A Alex Patterson
    mark.robustelliM mark.robustelli
    A andy 1
    S sean
    E emily
    S spencer
    J johnathon
    T tharon
    A akira
    joshuaJ joshua
    danD dan
    V voidmain
    robotdanR robotdan
    • RE: Why is the kickstart not running when I spin up the docker container?

      First check out the information you are getting from the docker log. Look at the log from the spin up and search for "kickstart." Was the container able to find the kickstart.json file? (In this case yes.)

      If the kickstart file was found, continue searching through the log for a potential error in the running of the kickstart. You might see something like.

      fusionauth-1  | 2025-07-02 05:14:05.177 PM ERROR io.fusionauth.api.service.system.kickstart.KickstartRunner - Failed to execute request to [PATCH][/api/user/registration/000000000001] Status [404]
      fusionauth-1  | Request body:
      fusionauth-1  | {
      fusionauth-1  |   "registration" : {
      fusionauth-1  |     "applicationId" : "e72dca1d-626c-4f4b-8f36-b7c8c2c0af33"
      fusionauth-1  |   }
      fusionauth-1  | }
      fusionauth-1  | 2025-07-02 05:14:05.177 PM ERROR io.fusionauth.api.service.system.kickstart.KickstartRunner - Error response:
      fusionauth-1  | null
      

      This will let you know there was an error and you need to resolve it. In this specific case, The PATCH request should have been a POST. Once that was changed, the kickstart ran fine.

      posted in Frequently Asked Questions (FAQ)
      mark.robustelliM
      mark.robustelli
    • Why is the kickstart not running when I spin up the docker container?

      When trying to create a kickstart, it's not getting used when i run docker compose. How can I fix it?

      posted in Frequently Asked Questions (FAQ)
      mark.robustelliM
      mark.robustelli
    • RE: Populate the First Name and Last Name when logging in with Google.

      @jakub-hajto , you may want to check out the Google Reconcile Lambda documentation. I also found this post that may be useful for you.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Email verification fails in new incognito mode

      @pocfused What versions of FusionAuth are you using? I saw this post that may account for this issue.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Doubling of login records

      @sergey_smirnov OK. It doesn't seem like the webhook you are using would cause the duplicate logins. I came across this post stating that exchanging a refresh token counts as a login event. I'm wondering if something like the user logins in using a new tab, then goes back to the old tab that triggers a refresh. If that is the case, that could account for the delay between logins and the "Something doesn't seem right" message as that session is no longer valid because of the new login. You might be able to verify this by using a webhook. There is a JWT.Refresh event that you might be able to log somewhere to see if it fires around the time of the duplicate log ins.

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: Doubling of login records

      @sergey_smirnov OK, I did some investigating and here is what I have found.

      1. SSO, I saw a reference to a post that mentions using SSO will create multiple session records (but shouldn't necessarily cause multiple login events). Are you using SSO?
      1. Are you using any Lambda's? In some versions (notably 1.31.0), a bug caused the OIDC reconcile lambda to be called twice during certain identity provider logins, which could result in duplicate processing and potentially duplicate events. This was patched in version 1.32.1.

      2. Are you using any Webhooks?

      3. Are you using an external IdP?

      These are just a couple of things to consider.

      posted in General Discussion
      mark.robustelliM
      mark.robustelli
    • RE: SAML CSRF token issue

      @joseantonio Ah OK. That makes sense. I couldn't find much detail on how the saml.csrf cookie works. It does seem plausible that when a new window is open that a value could change that could be causing this problem. If it is causing you problems, it may be work opening a new issue.

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: SAML CSRF token issue

      @joseantonio said in SAML CSRF token issue:

      also start the authorization process there

      What do you mean by "Also start the authorization process there?" Manually open a new tab (tab B) and paste in the URL " /oauth2/authorize"?

      If you enable debugging on the SAML tab for the Application in FusionAuth, do the logs indicate anything interesting?

      posted in Q&A
      mark.robustelliM
      mark.robustelli
    • RE: Receiving 502 errors when using Cloudflare in front of FusionAuth

      This is due to non-ASCII characters in headers causing an issue in the FusionAuth parsing code. Cloudflare sends headers with non-ASCII characters (such as cf-region: São Paulo) which triggers this issue.

      This is a java-http bug that was fixed in 2024, and released in FusionAuth version 1.51.2.

      So, two options:

      • upgrade to a version of FusionAuth 1.51.2 or newer. This is the recommended approach, but may require some work.
      • as an interim workaround, you can disable the "Add visitor location headers" option from your CloudFlare console. This should not have any negative impact, since we do not inspect those headers.
      posted in Q&A
      danD
      dan
    • Receiving 502 errors when using Cloudflare in front of FusionAuth

      We were using a FusionAuth cloud deployment directly but now want to use Cloudflare in front of it.

      We are now seeing intermittent, infrequent 502 errors.

      We see errors like this in the logs

      2025-06-24 14:05:09.345 PM ERROR io.fusionauth.http.server.HTTPServerThread - An exception was thrown during processing
      java.lang.IllegalArgumentException: Not a valid Unicode code point: 0xFFFFFFC3 
      

      How can we resolve this?

      posted in Q&A 502 proxy cloudflare error
      danD
      dan