FriendsOfFlarum OAuth

kaitou1412

Praise be to god (Alhamdulillaah)

I tried to edit this file located at /vendor/fof/oauth/src/Providers/Google.php

    public function provider(string $redirectUri): AbstractProvider
    {
        return new GoogleProvider([
            'clientId'       => $this->getSetting('client_id'),
            'clientSecret'   => $this->getSetting('client_secret'),
            'redirectUri'    => $redirectUri,
            'approvalPrompt' => 'force',
            'hostedDomain'   => **null**,
            'accessType'     => 'offline',
        ]);
    }

and edited 'hostedDomain' => null, to domain I want to restrict users to

and it works!

But I think it's better to include it in the extension's option page..

Thanks for the extension!

IanM

1.6.6

feat: support setting hosted domain for google provider by @IanM in FriendsOfFlarum/oauth70 kaitou1412

Screenshot

Optionally set G Suite/Google Apps for Business hosted domain:

Updating

composer update fof/oauth
php flarum cache:clear

Litalino

maybe add Sign in with Microsoft? https://extiverse.com/extension/nospi/oauth-microsoft

cmsoc

~_I did an update of this extension and the Google OAuth page is now showing an error. In the log file, the error is:

[2023-12-11 02:13:55] flarum.ERROR: TypeError: FoF\OAuth\Provider::getSetting(): Return value must be of type string, null returned in /home/XXXXX.cloudwaysapps.com/XXXX/public_html/social/vendor/fof/oauth/src/Provider.php:72~~

Update: It was a cache issue I guess. Just updated the details in OAuth settings and saved it again. It went away.

Flarfan79

For adding Facebook, I spent most of the night getting it to work. Once I added email permission (in addition to public_profile), it seems to be working at least for my own account. Is email permission needed to make this work? Do users have to give permission to obtain their email even if signing up through facebook?

IanM

Flarfan79 yes this is correct. Flarum requires the email address in order to know where to send notifications to, etc.

Flarfan79 This is a good point. I'll look into modifying this as soon as I can

Flarfan79

I had an additional question. I've added Google as a way to sign in. When the registration page shows on my site, the username and display name are prefilled in with the same info. Is there a way for a user to be notified that the second box is their nickname? The only way they would know this is by removing the text and then nickname appears. Maybe something underneath the box?

Flarfan79

IanM thanks so much for the replies.

pfernandez98

Hello, when I'm trying yo add my Gitlab account to my already-created account, it does nothing. This is the "URL": https://myflaruminstance.com/u/myuser/security.

Screenshot

Can you check please? Thank you for your work!

Indreksi

Looks like login don't work in facebook browser, when using facebook app.

Is it possible to fix this or is it possible to add message something like on image?

clarkwinkelmann

Indreksi what is the problem exactly?

This extension can solve some of the issues clarkwinkelmann/flarum-ext-auth-popup-failsafe . The original idea of that failsafe extension was to test and then submit the change to Flarum itself, but I have not heard much feedback from those that tested it so far.

Indreksi

clarkwinkelmann

Users cannot log in if they come through the Facebook app.

With Google Chrome browser all works, but when im tryng to login through Facebook app then "Facebook login button shows" Invalid_email and when i try to use Google it shows me error

Is there something wrong with my setup?

clarkwinkelmann

Indreksi unfortunately I have never seen that issue before so I am not sure.

Just to confirm, I assume Facebook login through the Facebook browser does not show that same error?

Could it be Google themselves who blocked the Facebook Browser 🤔 But I don't know of any method for webmasters to force mobile apps to open their website in a separate app. Usually it's only a setting in the app itself that the user has to know about and change.

If we know which user agent condition blocks login we could add a check for the same agent to generate a warning like you suggest.

Indreksi

Facebook login through the Facebook browser shows Invalid_Email error.

Flab

Installed the extension. Github, Google and Facebook Login works fine. But getting a error message with Inkedin. Error message appears just after clicking register and the linkedin button. Tried different browsers (Firefox, Chrome, Safari). Always the same result. Anybody else have this problem? Any idea what to do?

AliAhsanZ

Flab Yes facing the exact same issue. its related to the deprecated scopes that are being sent in the query parameters to linkedin.com/v2/authorization. although in my linkedin App the scopes are updated. but i am not sure where are those deprecated scopes are coming from. @FriendsOfFlarum Kindly take a look into this.