wohali / ips4-oauth2-server Goto Github PK

I'm seeing the same issue as was reported in Issue #2

I get redirected to the login page successfully. But after logging in, the browser does not redirect back to my redirect URL. Is there any information I can provide that would help debug the issue?

It seems that if a user is not logged in, it redirects to the login correctly. Although, upon logging in, it does not redirect back to the oauth url for authorization.

"It it related to IPB's 2 Step Authentication. If a user has this enabled on their accounts then Oauth will not work properly after logging in. :)"

I am getting a 403 error when trying to authenticate.

I believe the 403 is returned when the login prompt is requested.
I have tried by already being logged into ips4 and without being logged in.
Both times the, login prompt returns 403.

When I redirect the user to request IPS4 access, this is the URL that is used (tokens and keys replaced with REMOVEDINGITHUB) http://www.anztac.com/applications/oauth2server/interface/oauth/authorize.php?state=REMOVEDINGITHUB&response_type=code&approval_prompt=auto&redirect_uri=http%3A%2F%2Fwikitest.anztac.com%2Findex.php%3Ftitle%3DSpecial%3AOAuth2Client%2Fcallback&client_id=REMOVEDINGITHUB

I am trying to get this working with a mediawiki wiki running MW-OAuth2Client

Any help or starting points would be greatly appreciated :D

When we give the consent to authorize the Rocket.Chat app for the account, i see this page rendered in a wrong way... like it's not loading any themes or templates... i don't know if it is done on purpose, but i'd like to have our proper theme rendered for this page

Not so much an issue but a query - Is it possible to login and authenticate using just HTTP requests?
I'd like to avoid bundling a browser with a desktop app (it bloats the size significantly) just to display the login page. It would be much more convenient to just provide a native form with username/password and handle it manually in code.

Thanks.

I tried to setup today the Rocket.Chat app, but i found out this error in your app. It seems you report a wrong url in the parameter list... in fact it's missing the oauth word... instead on your documentation, it's correct... just look the images to understand

How it looks like on ips4 app

How you report in the doc

Clearly it's missing that oauth part after interface word... can you fix it?

The new 4.3 release supports a full-fledged OAuth2 server. It has more features and will be maintained by Invision, so there should be a way to migrate ips4-oauth2-server users to the native version.

I've tested ips4-oauth2-server with 4.3 and it seems to work, so it's not an urgent issue. However, if you don't tell me you're already on it I'll start working on a PR.

Hello! I'm facing a strange problem.

Well, I have enabled all scopes at Admin Panel / Community / OAuth2 Server / Applications / MyCustomApplication

But, my redirect URL is coming back like this:

error=invalid_scope&error_description=An+unsupported+scope+was+requested&state=yhhbmhykiyjujijobkaxoyimemyytromoetfqtumawjfjsgcynagnimqjdtramhp

This happens only after sign in on my app for the first time, if I close and reopen the app (that will do the authentication process again), since the login is successful, it will work flawless.

What's going on? Any tips?

Any particular reason you're not including the user ID in the returned profile data? I can use the email address, but when the user changes its email at the IPS site, there is no way to recognize the user and a new account will be the result.

Everything is fine in my client app. I'm doing a POST with the rights parameters as you can see (and I debugged on my app):

MyApp[]: PARMS {

"client_id" = FAKEFAKEFAKEFAKEFAKE;
"client_secret" = FAKEFAKEFAKEFAKEFAKEFAKEFAKEFAKE;
code = "AQC33aQPjpXwIJxovd1hOLIq-9HgYqrchH6Q4dYdCe5LW-38aQ_305sfnCDQz6Ykn5fLtvdfMAfjM3u7nfEaWOZTEZFpChmxfefYfKGrPvVdpuunfY9KMzwwfeVzeQn38J2LoFek9-GD9sHa2gJVCxREkmDUT4W8xBt27NjYHX5XgDbUCPTqk1NgW3lHQSxwJfRvpzeX8US2CaPSFygmfJgvwDJmHNSskt1v0_WjCYDFg0R82Nnla63CS5c86ODDOZctPSAtoCjK14GxJrRROVY5I24X_3JXBQzBv-CpTuRFI_yxKrErAGBP74_v9KZdQPE";
"grant_type" = "authorization_code";
"redirect_uri" = "https://mywebsite.com/OAuthCallBack.php";

}

but the IPB OAuth2 Server is giving me this weird behavior:

{"error":"invalid_request","error_description":"The grant type was not specified in the request"}

Hello,

I updated to the latest version and I am getting this error:
The request method must be POST when requesting an access token

I am POSTing it, I am sure.

Any Idea?

Thanks!

See #6 (comment) for original reporter.

Hello,

Is there a way that I can return an information if the account is verified? Like, in our forum Users need to be approved by an Staff member, how can I return if the user has been approved?

Just an info, why rocket.chat doesn't use the avatar of IPS?
Is the avatar not a data retrieved by rocket.chat?