User pictures from Google SSO (Enterprise Connection)
Hi all, it seems all the pictures from google SSO connections are blank gravatars.
I tried asking AI but it makes stuff up (https://discord.com/channels/1070212618549219328/1396808784810344518) and didn’t really help
can anyone help me with that? ...
SvelteKit and OpenAPI-Fetch
I've been playing around with Kinde auth in SvelteKit with OpenAPI-Fetch.
I have hit a tricky spot where using the middleware with openapi-fetch I cant obtain the Kinde token since it has no access to the session storage.
The way I have done it now im giving the user the ability to see their own token. Could anyone give me some insight on keeping the middleware apart of the code, and removing the token endpoint?
...
Upgrading from version 4 to version 5 of @kinde-oss/kinde-auth-react gives compiler error
I've just upgraded @kinde-oss/kinde-auth-react from version 4.0.4 to version 5.5.0 and I get presented with the following compiler error:
...
ERROR in ./src/index.tsx 115:39-52
Can't import the named export 'KindeProvider' (imported as 'KindeProvider') from default-exporting module (only default export is available)
ERROR in ./src/index.tsx 115:39-52
Can't import the named export 'KindeProvider' (imported as 'KindeProvider') from default-exporting module (only default export is available)
The link between user_id and customer_id
What is the link between user_id and customer_id and how do I get customer_id to then run Management API to check/consume usage?
Supabase Asymmetrical Key Update
Hey team, with Supabase migrating to using asymmetrical keys (https://github.com/orgs/supabase/discussions/29289), and Kinde not being a supported third party auth provider, wondering if you have any suggestions on handling auth now?
I've switched Kinde accounts, therefore need to set up a new custom JWT secret in Supabase but had accidentally migrated to the new keys. Although it is possible to resolve this by creating a new Supabase project, I would prefer not to, just wondering if the team has considered this yet. Would love to avoid having to make an extra network hop to exchange tokens for each auth.
Thanks...
Why did "Signed out" screen start showing up?
Hello guys, after doing a bunch of Kinde-unrelated frontend changes I started getting Signed out screen from Kinde.
I don't remember changing any Kinde settings and don't understand where this screen is coming from. Can anyone help me?:(
Sharing what we have on production (correct behavior) vs what I have on a deployed staging environment (incorrect). The screen does not show up when developing locally.
...
Is there any way to use Kinde with react native Expo Web?
I've been using Kinde for a while now and love it. We are moving from a pure swift iOS app to an Expo app which will be targeting iOS, Android and Web. However, it seems the Kinde Expo SDK doesn't support web and only supports iOS and Android. Is there any way to enable support for web as otherwise this will be a blocker to us using Kinde and I'll need to move off it which I don't want to do. Is it possible to use the javascript or react sdk in combination with the expo one so that we can target...
Redirect URL for multi-tenancy app
Another issue, but I'll start a separate thread for that, because they are unrelated.
Context: I’m building a multi-tenancy, white-label app. It's an education platform, B2B2C model. I have a platform, where creators (mentors, teachers) can prepare a course. One teacher can have multiple courses. Students can have access to just part of them, but across many organisations (tenants). There is also a student portal, where students can login, if they are invited to (like
edu.example1.com, med.example2.dev). I'm using NextJS.
The issue is:...Multi-tenancy setup and user changing the email
Context: I’m building a multi-tenancy, white-label app. It's an education platform, B2B2C model. I have a platform, where creators (mentors, teachers) can prepare a course. One teacher can have multiple courses. Students can have access to just part of them, but across many organisations (tenants). There is also a student portal, where students can login, if they are invited to (like edu.example1.com, med.example2.dev). I'm using NextJS.
The issue is: users in Kinde are global (per env). So in a scenario like this:
1. User is a student in Org1 (edu.example1.com)
2. User is also a student in Org2 (med.example2.dev)...
Azure Entra ID Oauth Login Microsoft Tokens
Hi,
Quick question. Is it possible to retrieve the microsoft token which is provisioned during Entra ID login? I would like to use the token to fetch some data from the MS Graph APIs.
Thx 🙂...
Missing Billing data in Get Organization API?
Hey Kinde! Just got started with your product and have started to kick the wheels with organizations and billing. According to the docs there should be a billing object on the Get Organization endpoint. But this is missing completely. Using the v1 api - is this under another version since Billing is in beta?
Customise localStorage keys used for useInsecureForRefreshToken between JS and React SDKs
Hello! We're migrating our apps from Auth0 to Kinde (and loving the experience).
We have a React app that has to iframe a legacy app so we've had to use both JS and React SDKs. We were having issues getting the iframed app to use the authenticated Kinde session in local development even though they are on the same domain. We realised that the localStorage key used by the react SDK for the refresh token is
refreshToken0 while the JS SDK is expecting kinde_refresh_token. Is there a way to customise what is used by either SDK to ensure they are the same?...How to transfer ownership of my business?
I created the business as a test with my personal email now I want to convert it to the company email. But couldn't find a way how.
Username entering is buggy?
Hey! When I pass in
testingtesting username all works well - I get prompted to "Enter my password"
However! When I delete this username and replace it with TestingTesting - I get prompted "We need your email too"
Reading in https://docs.kinde.com/authenticate/authentication-methods/username-authentication/ - if I understand correctly these two usernames should be behaving the same! So it seems like a bug to me, please can you confirm?...
Is the Expo SDK buggy with Expo Go?
After the first authentication flow, callbacks stop working. I was told by the Kinde AI that
"This is a known issue with the Expo SDK when using Expo Go. The callbacks stop working after the first authentication flow because of how Expo Go handles deep links and app state restoration"...
Pass values between workflow triggers
Is there a way to pass data between workflows?
I autenticating via SSO (entra id), and need to use the claims in the idToken when generating/formating accesstokens....
Getting and refreshing access tokens in API client ts file
Hi,
I am working on protecting my API by passing the access token in the headers of the API calls and have a few questions to make sure I'm doing this properly using the React SDK.
I am using
openapi-fetch package to call my API and their docs give an example on adding middleware to pass the access token in each request (here). I am using the getRawToken, isAuthenticated, refreshToken utility functions provided in the @kinde-oss/kinde-auth-react/utils import to do this in my API client ts file similar to what is shown in the openapi-fetch docs I linked....Refresh Token missing for Sveltekit, is there a manual option
My environment is Sveltekit v2, Svelte 5 and Typescript, and I am trying to connect to Convex and provide the authorized user through an OIDC handshake.
My understanding is that there are three tokens, the refresh, access and ID. The problem is I need a live connection to the refreshing ID token not the access token. Convex uses a browser based client to ship up authentication and requires a function that can request a refresh, if the existing token is expired. kindeAuthClient getToken returns a memory store with the access token always up to date, but if the user is not at their computer for one hour and returns, the ID is expired despite the user retaining access with regular sessionHooks or getToken. I need a way to send the hooks.server.ts up to date sessionHook ID token to convex. Note, hook.server.ts also runs before any route or server code!
Here is snippets of code...
Error : Moved Permanently POST /api/kinde-webhook 400
Hi, I'm currently trying to implement a Webhook with Kinde in order to sync The Kinde Users with my DynamoDB database.
I used this command for dev testing :
...
ngrok http http://localhost:3000
ngrok http http://localhost:3000