Drupal7 har the following format for the users

I didn't see the format, but here's the users API docs and the registrations API docs. You can use user.data and registration.data for arbitrary JSON data, so that's a good place to drop anything that doesn't fit into the FusionAuth data model.

Drupal 7 users sha512.

That is not supported by default with FusionAuth (here's the list of supported hashing schemes), but there are quite a few supported community contributed schemes including for SHA-512. You can install that plugin in FusionAuth as documented here.

Sure, store the access token in a secure cookie.

We don't have any examples of that with Angular, but here's a diagram of the flow: https://fusionauth.io/learn/expert-advice/authentication/spa/oauth-authorization-code-grant-jwts-refresh-tokens-cookies/

You'll still have to have some kind of backend because server side code is required to exchange the authorization code for the access token, as above. But you can then have the JWT be stored as a cookie and sent to APIs without further interaction with the backend server.

The alternative is to use the implicit grant, documented here: https://fusionauth.io/docs/v1/tech/oauth/overview#example-implicit-grant

But we strongly advise against that since it exposes your access tokens to XSS attacks.

Hiya, @milan-agatonovic ! Welcome to the FusionAuth community.

Here's a forum post about shopify integration: https://fusionauth.io/community/forum/topic/791/shopify-integration

The short answer is it should be possible, but unfortunately we don't have step by step instructions on how to do this. Hopefully the above forum post will give you some starting points.

Please feel free to post back with specific questions or progress. It's definitely something I'm interested in following along with.

Thanks @richb201 , appreciate the UI suggestions! I'll take a look as we definitely don't want folks to be confused/frustrated by the user interface.

Cheers,
Dan

Thanks awesome @richb201 !

I'm glad you were able to sort it out!

Here's an example of a rails migration which modifies application configuration:

require 'fusionauth/fusionauth_client' class ModifyApplicationToUseForm < ActiveRecord::Migration[6.1] def up client = FusionAuth::FusionAuthClient.new(ENV['FA_API_KEY'], Rails.configuration.x.oauth.idp_url) request = { "application": { "registrationConfiguration": { "enabled": true, "type": "basic" } } } res = client.patch_application(Rails.configuration.x.oauth.client_id, request) if res.status != 200 raise "did not succeed." end end def down client = FusionAuth::FusionAuthClient.new(ENV['FA_API_KEY'], Rails.configuration.x.oauth.idp_url) request = { "application": { "registrationConfiguration": { "enabled": false } } } res = client.patch_application(Rails.configuration.x.oauth.client_id, request) if res.status != 200 raise "did not succeed." end end end

Worth noting that I pull the API key from the environment and the location of the FusionAuth instance and the application id from a config file. Often you'll need to do a lookup if you are modifying other entities.

You'd run this via the normal migration process: rails db:migrate to roll forward and rails db:rollback to rollback.

You can also run more than one operation in a single migration, but there's no transaction surrounding these changes, so if you are making three changes and step number 2 fails, you'll have to back out step number manually.

@maciej-wisniowski That was done when we found that there was a bug in

#FROM fusionauth/fusionauth-app:1.19.4

and we replaced it with:

FROM fusionauth/fusionauth-app:1.19.7

@maciej-wisniowski said in Using custom parameters with login page:

[@helpers.hidden name="custom_parameter" /]

I did not know you could do that. Thanks for sharing your solution!

@dan I am using caprover as PaaS, and it has NGINX fully integrated. It's only happening on their latest version. I already raised an issue with them (https://github.com/caprover/caprover/issues/1035).

I tried to reconfigure their proxy manually but couldn't get it to work. I just rolled it back to their earlier version.

@zamman welcome to the FusionAuth community!

FusionAuth doesn't support JWEs at this time. If you wanted to encrypt some data in your JWT, you could use a JWT populate Lambda, as long as the encryption algorithm can be implemented in straight javascript embedded in the lambda (you cannot pull in third party libraries). This MIT licensed code might work; I haven't tested it though. That's not going to create a full fledged JWE, but may suit your needs.

We don't have JWE support on our near term roadmap (you can learn more about our roadmap here). If this is a feature you need to have in a set schedule and are willing to spend money to get, please feel free to contact us about our professional services.

Alternatively, please file a feature request in our github issues list with an explanation of the use case. We draw from these feature requests based on community support as indicated by upvotes.

@cameron-chapman,

Typically the best place to get answers for these kinds of questions is our contact form.

Here is a FAQ with some compliance information.

And here's another one, with slightly different but still useful information.

But if you have specific questions, please reach out directly.

@dan said in Systemd service template:

https://fusionauth.io/direct-download/

To Add to what @dan mentioned, you can install .deb or .rpm packages using the fast path install method. It will default to zip file installation.

For additional ways to call it - see the Fast Path install guide.
https://fusionauth.io/docs/v1/tech/installation-guide/fast-path/

@vexana

I think you want to add a claim into a token? Does this lambda help? https://fusionauth.io/docs/v1/tech/lambdas/jwt-populate/

Or can you be more precise in what you are looking to do?