Missing session cookie with customAuthResolver in Backstage
I have implemented custom Auth Resolver with okta where signIn works fine and i'm able to login in successfully. However on reloading the page, i'm getting kicked out of the site and lands on SignIn Page instead. The browser tries to make API call to
GET http://localhost:7007/api/auth/okta/refresh?optional=&scope=openid email profile offline_access&env=development
and it replies 401 unauthenticated with following error name: "AuthenticationError", message: "Refresh failed; caused by InputError: Missing session cookie.
I checked the request header / cookie are not being passes along.
Is it something wrong with me configuration ?
auth:
environment: development
providers:
okta:
development:
clientId: ${AUTH_OKTA_CLIENT_ID}
clientSecret: ${AUTH_OKTA_CLIENT_SECRET}
audience: ${AUTH_OKTA_DOMAIN}
backend.add(import('@backstage/plugin-auth-backend'));
backend.add(import('@backstage/plugin-auth-backend-module-guest-provider'));
backend.add(customAuthResolver);
components: {
SignInPage: props => {
return (
<SignInPage
{...props}
auto
provider={{
id: 'custom-auth-resolver',
title: 'Okta',
message: 'Sign in using Okta',
apiRef: oktaAuthApiRef,
}}
onSignInSuccess={async (identityApi: IdentityApi) => {
props.onSignInSuccess(identityApi);
}}
/>
);
},
},
Solution
The issue was with okta application configuration.
Be sure to specify refresh_token as a data_type value for the grant_type parameter when adding an OAuth client app (opens new window) using the /apps API.
https://developer.okta.com/docs/guides/refresh-tokens/main/
https://backstage.io/docs/auth/okta/provider
Make sure to select refresh_token in okta application configuration.
- Calling setState synchronously within an effect can trigger cascading renders
- Unable to update data in redux toolkit
- How can I extend the route component to incorporate custom props?
- How to step through a GIF animation based on the browser's scroll position?
- Spring React and Sessions.. how to keep session
- Next.js Loads <script> tags but it doesn't execute them
- Find out if component is inside a context provider
- Login session always remains true in Next.js, even after logout
- Show/Hide ReactJS components without losing their internal state?
- How to create simple switch toggle to switch between dark theme and light theme in react native
- Weird behavior of event listener added in a useEffect block
- Silent Bug on React JS Anime list
- How to connect to SQL database with react?
- sh: react-scripts: command not found after running npm start
- Handling Redirection after successful login using Firebase in React
- Zod + react-hook-form: .default(false) still resolves as boolean | undefined as if it were.optional()
- How to build dynamically class names with Tailwind CSS
- React useEffect Hook when only one of the effect's deps changes, but not the others
- how to set Header and Footer in react-pdf/renderer?
- Understanding how to properly implement a multi-step form in React
- Email validation with zod
- why am i getting blank page on mapboxgl React?
- React Leaflet marker icon isn't showing my next.js app
- How to tell if a website is using next.js?
- Get previous value with React Hook Form
- Nextjs Bug after downgrading node and then reinstalling back to the original version of node
- Is it safe to change a ref's value during render instead of in useEffect?
- My MUI Select component doesn't display placeholder or label props
- The useState set method is not reflecting a change immediately
- How to use SCSS with Tailwind CSS?