This message was deleted.
# generalm
microscopic-answer-24504
07/15/2023, 7:48 AMThis message was deleted.
s
steep-lamp-91158
07/17/2023, 8:20 AM
make sure that the redirect URL (from auth0 to Ory) is set up correctly
steep-lamp-91158
07/17/2023, 8:20 AM
what URL are you on when you see that error?
t
thankful-lion-29218
07/17/2023, 8:29 AMI'm at /authorize?client_id=CLIENT_ID&redirect_url=ORY_REDIRECT_URL&response_type=code&scope=openid+profile+email&state=NONCE
thankful-lion-29218
07/17/2023, 8:29 AMThe redirect URL is the one that's specified in the UI
thankful-lion-29218
07/17/2023, 8:29 AMI'm trying to sign in from the default UI
thankful-lion-29218
07/17/2023, 8:35 AMKind of looks like the redirect to Auth0 itself is what's failing.
s
steep-lamp-91158
07/17/2023, 12:59 PM
hm but you are on your Ory Network slug/custom domain host, right?
t
thankful-lion-29218
07/17/2023, 1:00 PMYep, accessing through my Ory network slug
thankful-lion-29218
07/17/2023, 1:01 PMEx:
Copy code
<https://my-project-slug.projects.oryapis.com/ui/login?flow=FLOW_ID>s
steep-lamp-91158
07/17/2023, 1:01 PM
maybe the docs page is not very clear on the Ory Console variant, but the Ory CLI version says
In the created app, set the redirect URI to:
https://www.ory.sh/docs/kratos/social-signin/auth0Copy codehttps://{project.slug}.<http://projects.oryapis.com/self-service/methods/oidc/callback/auth0|projects.oryapis.com/self-service/methods/oidc/callback/auth0>
t
thankful-lion-29218
07/17/2023, 1:04 PMI've set that URL as the callback url in the Auth0 application.
s
steep-lamp-91158
07/17/2023, 1:16 PM
did you verify that auth0 redirects you to that one?
steep-lamp-91158
07/17/2023, 1:20 PM
according to https://auth0.com/docs/authenticate/protocols/oauth#authorization-endpoint I would expect that you should end up on some auth0 hosted consent screen
t
thankful-lion-29218
07/17/2023, 1:22 PMYeah that’s my expectation as well, but I’m never redirected to the Auth0 login screen, it just serves the error. I’ll try to verify that auth0 redirects to the correct ORY callback url
s
steep-lamp-91158
07/17/2023, 1:23 PM
ok can you send me your project URL so I can also take a look on the redirects?
steep-lamp-91158
07/17/2023, 2:12 PM
yeah looks like there is an issue in the UI, it should prompt you for the auth0 tenant endpoint
as a workaround, you can use the Ory CLI:
Copy code
ory patch identity-config PROJECT_ID --replace '/selfservice/methods/oidc/config/providers/0/issuer_url="<https://TENANT.auth0.com>"'t
thankful-lion-29218
07/17/2023, 2:14 PMGotcha! I haven't set up anything in the identity config regarding OIDC though, might that be the problem, or is it just a general bug in the UI?
s
steep-lamp-91158
07/17/2023, 2:18 PM
when you enable auth0 in the Ory console, that's basically what happens in the background, but it is currently missing the issuer URL
t
thankful-lion-29218
07/17/2023, 2:19 PMGotcha 👍 Thanks so much for helping me out with this!
s
steep-lamp-91158
07/17/2023, 2:19 PM
np, sorry for the hickups
t
thankful-lion-29218
07/17/2023, 2:19 PMno worries!
8 Views