• Home
  • Categories
  • Recent
  • Popular
  • Pricing
  • Contact us
  • Docs
  • Login
FusionAuth
  • Home
  • Categories
  • Recent
  • Popular
  • Pricing
  • Contact us
  • Docs
  • Login

Trouble getting the user object post login

Scheduled Pinned Locked Moved
Q&A
login python sessions user
4
16
14.4k
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • N
    nishant
    last edited by 25 Aug 2020, 22:46

    @dan Thanks for the response. I did double check my application code and there was a client id mismatch in one of the URIs in my application code. I fixed that. However I'm still getting 401. Below is the flask server output:

    <Response [401]>
error
<Response [401]>
74.15.29.84 - - [25/Aug/2020 22:43:04] "GET /oauth-callback?code=9E2MtFiIkFTS1uRBDjNXIOwLDuefGNLMqreSo1gZL2A&locale=en_US&userState=Authenticated HTTP/1.1" 200 -```

    As you can see the state has changed to Authenticated now.

    1 Reply Last reply Reply Quote 0
    • D
      dan
      last edited by 26 Aug 2020, 19:12

      Hiya,

      Thanks for your patience. I'm not quite sure what is going on.

      Can you provide your code in a github repo or other place I can take a look at the whole project, please?

      --
      FusionAuth - Auth so modern you can download it.
      https://fusionauth.io

      N 1 Reply Last reply 27 Aug 2020, 01:08 Reply Quote 0
      • N
        nishant @dan
        last edited by 27 Aug 2020, 01:08

        @dan No worries! Thanks for all your help! You can download the application zip file from here. As you'll notice, its a pretty simple app. Also I've replaced all the ip addresses and ids for security reasons so while the app won't run as is, you would still be able to get an idea of the functionality. Thanks again for your continued support! Hoping to resolve this soon!

        N 1 Reply Last reply 28 Aug 2020, 12:57 Reply Quote 0
        • N
          nishant @nishant
          last edited by 28 Aug 2020, 12:57

          @dan Hi Dan, just circling back. Did you have a chance to look into this? Thanks!

          1 Reply Last reply Reply Quote 0
          • D
            dan
            last edited by 28 Aug 2020, 17:42

            OK, I did take a look.

            The issue is that there was a recent change to the client library which switched the order of arguments.

            This is the set of arguments that worked for me:

             resp = client.exchange_o_auth_code_for_access_token(request.args.get("code"), "http://localhost:5000/oauth-callback", client_id, client_secret)

            But I asked the engineering team when they'd be releasing the newest version of the libs, which will change it to

             resp = client.exchange_o_auth_code_for_access_token(request.args.get("code"), client_id, "http://localhost:5000/oauth-callback", client_secret)

            client_id and redirect_uri swapped places.

            Once I did that, when I logged in, I saw:

            success
{'access_token': 'eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImRkMDYxMjY4YWMifQ.eyJhdWQiOiIzODU1ZGMyMC0yNzQ3LTQwYzEtYTUyMC1hODc3NzYxYmY5YjYiLCJleHAiOjE1OTg2Mzk2MTMsImlhdCI6MTU5ODYzNjAxMywiaXNzIjoiYWNtZS5jb20iLCJzdWIiOiIwMDAwMDAwMC0wMDAwLTAwMDAtMDAwMC0wMDAwMDAwMDAwMDQiLCJqdGkiOiIwYWYzNDlkMy04ZTQ5LTQ0ZDEtYmE5NS04NmM2N2I4NzAzODkiLCJhdXRoZW50aWNhdGlvblR5cGUiOiJQQVNTV09SRCIsImVtYWlsIjoiZGluZXNoQGZ1c2lvbmF1dGguaW8iLCJlbWFpbF92ZXJpZmllZCI6dHJ1ZSwiYXBwbGljYXRpb25JZCI6IjM4NTVkYzIwLTI3NDctNDBjMS1hNTIwLWE4Nzc3NjFiZjliNiIsInJvbGVzIjpbXX0.RXdPUtk_vtRbNva__O8OBLFdUv8aZubewkXmK9Pnr2g', 'expires_in': 3599, 'token_type': 'Bearer', 'userId': '00000000-0000-0000-0000-000000000004'}

            If you want to get further user info, you can use the userId to look stuff up via the APIs. You could also make a request to the Userinfo endpoint, but if you do so, you need to request the openid scope initially.

            I also noticed that the API call was failing. Make sure you create your client with the API key, which is different than the client id:

            client = FusionAuthClient('APIKEY', "http://localhost:9011")

            Will let you know what I hear back, but until then you should look at https://github.com/FusionAuth/fusionauth-python-client/blob/1.18.0/src/main/python/fusionauth/fusionauth_client.py to see the proper order of args, because that is the published version.

            --
            FusionAuth - Auth so modern you can download it.
            https://fusionauth.io

            A 1 Reply Last reply 23 Oct 2020, 23:19 Reply Quote 1
            • D
              dan
              last edited by 28 Aug 2020, 18:41

              OK, we just released 1.18.8 and that is the version you want to use:

              In requirements.txt:

              fusionauth-client==1.18.8

              And then this is the call you want to make (with client_id before redirect_uri) :

               resp = client.exchange_o_auth_code_for_access_token(request.args.get("code"), client_id, "http://localhost:5000/oauth-callback", client_secret)

              --
              FusionAuth - Auth so modern you can download it.
              https://fusionauth.io

              1 Reply Last reply Reply Quote 2
              • N
                nishant
                last edited by 29 Aug 2020, 00:27

                Thanks Dan! It all works now.

                1 Reply Last reply Reply Quote 1
                • R
                  ralph
                  last edited by 10 Oct 2020, 20:27

                  Thanks all for this - I too fell into the trap. It looks like the docs I was following have the wrong signature for the exchange_o_auth_code_for_access_token function: https://fusionauth.io/blog/2020/07/14/django-and-oauth

                  It should of course read:

                  r = client.exchange_o_auth_code_for_access_token(
      code,
      settings.FUSION_AUTH_APP_ID,
      redirect_url,
      settings.FUSION_AUTH_CLIENT_SECRET,
    )

                  (incidentally, the docs use CLIENT_ID in this function call, but never actually try to set it - so it should be APP_ID as here)

                  1 Reply Last reply Reply Quote 0
                  • D
                    dan
                    last edited by 13 Oct 2020, 03:36

                    Thanks @ralph . I just updated the site ( https://github.com/FusionAuth/fusionauth-site/pull/247 ) and the fixes should go out in a day or so.

                    --
                    FusionAuth - Auth so modern you can download it.
                    https://fusionauth.io

                    1 Reply Last reply Reply Quote 0
                    • A
                      amine.hosni @dan
                      last edited by 23 Oct 2020, 23:19

                      @dan Thank you for your support. Fixing the signature just saved me another couple of hours (also coming from https://fusionauth.io/blog/2020/07/14/django-and-oauth/) ^^

                      1 Reply Last reply Reply Quote 1
                      • First post
                        Last post