For testing purposes I removed OIDC from a user th...
# ory-networkf
fast-eve-41839
10/11/2024, 10:05 AMFor testing purposes I removed OIDC from a user that already had password setup. When signing in with OIDC (to get to the account linking) after the removal I don’t seem to get to the linking step at all.
We have two webhooks configured for after registration but I only get the first one where the identity id is basically:
'00000000-0000-0000-0000-000000000000'8e2f03b0-b6df-420e-a5e1-8b73a6447e7bfast-eve-41839
10/14/2024, 9:54 AM@bland-eye-99092 Do you need any more information to be able to assist, please let me know
fast-eve-41839
10/15/2024, 12:15 PMStill having this issue and not really able to debug since the webhooks says nothing from the Ory page.
b
bland-eye-99092
10/15/2024, 12:25 PMcan you post the configuration for your webhook?
f
fast-eve-41839
10/15/2024, 12:27 PMb
bland-eye-99092
10/15/2024, 12:28 PMI do not have access to that, please post a screenshot with redacted information or the output from the CLI (redacted)
f
fast-eve-41839
10/15/2024, 12:30 PM Copy code
registration:
after:
code:
hooks:
- hook: session
default_browser_return_url: redacted/verify-email
hooks: []
oidc:
default_browser_return_url: redacted/login-redirect
hooks:
- hook: session
- config:
auth:
config:
password: redacted
user: redacted
type: basic_auth
body: redacted
can_interrupt: false
method: POST
response:
ignore: false
parse: true
url: redacted
hook: web_hook
- config:
auth:
config:
password: redacted
user: redacted
type: basic_auth
body: redacted
can_interrupt: false
method: POST
response:
ignore: true
parse: false
url: redacted
hook: web_hook
passkey:
hooks:
- hook: session
password:
hooks:
- config:
auth:
config:
password: redacted
user: redacted
type: basic_auth
body: redacted
can_interrupt: false
method: POST
response:
ignore: false
parse: true
url: redacted
hook: web_hook
- config:
auth:
config:
password: redacted
user: redacted
type: basic_auth
body: redacted
can_interrupt: false
method: POST
response:
ignore: true
parse: false
url: redacted
hook: web_hook
- hook: session
webauthn:
hooks:
- hook: session
- config:
auth:
config:
password: redacted
user: redacted
type: basic_auth
body: redacted
can_interrupt: false
method: POST
response:
ignore: false
parse: true
url: redacted
hook: web_hook
- config:
auth:
config:
password: redacted
user: redacted
type: basic_auth
body: redacted
can_interrupt: false
method: POST
response:
ignore: true
parse: false
url: redacted
hook: web_hookb
bland-eye-99092
10/15/2024, 12:31 PMAnd this is for an existing identity, where you're trying to reach the account linking?
f
fast-eve-41839
10/15/2024, 12:31 PMYes
fast-eve-41839
10/15/2024, 12:31 PMI can login with username/password for this user.
b
bland-eye-99092
10/15/2024, 12:31 PMThat's not a registration flow, but a login flow, since the user already exists.
f
fast-eve-41839
10/15/2024, 12:32 PMHmm, not getting a login call though.
fast-eve-41839
10/15/2024, 12:32 PMLike I do for all other users
b
bland-eye-99092
10/15/2024, 12:33 PMnot getting a login call though.what call are you expecting?
f
fast-eve-41839
10/15/2024, 12:33 PM Copy code
login:
after:
code:
hooks: []
default_browser_return_url: redacted
hooks:
- config:
auth:
config:
password: redacted
user: redacted
type: basic_auth
body: redacted
can_interrupt: false
method: POST
response:
ignore: true
parse: false
url: redacted
hook: web_hookfast-eve-41839
10/15/2024, 12:33 PMThat the user got login
b
bland-eye-99092
10/15/2024, 12:34 PMcould you try moving the hook definition to the password section?
f
fast-eve-41839
10/15/2024, 2:04 PMBut I login with SSO? But sure.
fast-eve-41839
10/15/2024, 2:05 PMI am a bit confused though @bland-eye-99092. I am getting 1 out of two webhook calls on the registration endpoint when i “register/login” with SSO.
b
bland-eye-99092
10/15/2024, 3:01 PMsorry I meant oidc.
f
fast-eve-41839
10/15/2024, 3:02 PMNo matter the webhooks, I dont get the account linked at all? Even after sign in
fast-eve-41839
10/15/2024, 3:03 PMNormally we get both webhook calls on the registration for oidc when someone wants to link and we are able to perform the link. Something seems to happen for this user that breaks that.
b
bland-eye-99092
10/16/2024, 8:17 AMCould you post a screencast of what's happening? Normally you would get the account linking screen if the account already exists, but you're trying to log in through OIDC.
f
fast-eve-41839
10/16/2024, 10:54 AMAaah, it seems like the return code from the API (to indicate account linking) in this flow has changed. Hence our custom ui flow for this is no longer rendering as it should.
fast-eve-41839
10/16/2024, 10:55 AMMaybe this has been communicated somewhere and we have missed it?
b
bland-eye-99092
10/16/2024, 10:55 AMI don't think it has, we adjusted the messages a little bit, but no status codes have changed.
f
fast-eve-41839
10/16/2024, 10:56 AMHmm.. that is weird because I dont see a change of this the last year when we built it