Lock 11 fails when redirect set to false

darren · January 31, 2018, 7:05am

Just updated lock 10 to 11.

When initializing the lock with redirect set to false, instead of getting a proper authResult w/ token etc, back we get the following

{"login_ticket":"...","co_verifier":"...","co_id":"..."}

and the lock popup shows an error, although the authenticate call shows a 200. Also the logs at Auth0 don’t record an error or login.

changing redirect to true fixes this, but we handle our own redirection so we require that it is turned off.

Thoughts?

below is the initialization.

  lock = new Auth0Lock(getAuthClient(), getAuthDomain(), {
    auth: {
      audience: getAudience(),
      responseType: "token",
      redirect: false,
      sso: false,
      params: {
        scope: "openid profile"
      }
    },
    theme: {
      logo: "/assets/img/dc-auth-lock.png",
      primaryColor: "#32bce7"
    },
        closable: false,
    rememberLastLogin: false,
    autofocus: true
  });

attila.csnyi · February 7, 2018, 11:18pm

Any update on this I have the same issue with lock v11. Thanks all your help.

kjkyle · February 8, 2018, 12:32am

Are you using an AD/LDAP connection and what version of Lock 11 are you using?

We had a similar issue that was resolved in Lock 11.1.2

Here was my post:
http://community.auth0.com/questions/14091/problems-with-lock-11-and-ie-11-and-enterprise-con?childToView=14191#comment-14191

attila.csnyi · February 8, 2018, 1:48am

Dear @kjkyle I am using “auth0-lock”: “11.2.2” with Angular 5, nothing extra just simple user management via auth0 manually created users.
Sometimes was working, but after a point just got back this errors and warning
![alt text][1]
I added localhost url below to the Allowed Web Origins area.
Thanks your quick feedback!

attila.csnyi · February 8, 2018, 2:10am

Ahh I have found what was the issue. I assumed when I use redirect: false with lock, then I do not need to provide callback url. This assumption was wrong! I have to put my http://localhost:8201 url in popup mode case as well.

Thanks for your help!

attila.csnyi · February 9, 2018, 10:56pm

Dear @kjkyle

Do you know what {"login_ticket":"...","co_verifier":"...","co_id":"..."} means?
I started to receive just those login tickets with 200 status code, and the ‘WE’RE SORRY, SOMETHING WENT WRONG WHEN ATTEMPTING TO LOG IN.’ error in auth lock dialog. If I recreated the same user and still cannot log in (email verified).
Thanks for your help.

darren · February 14, 2018, 12:39am

Thanks kjkyle for the suggestion. I’ve updated and the problem still exists. No we’re not using LDAP. Just a simple login trying to get the token but not redirect.

The search continues…

attila.csnyi · February 14, 2018, 3:02am

Dear @darren ,

Keep your eye on the Logs dashboard where you should see all authentication logs. If your lock popup not closing due to some error message on the popup a detailed problem description should be in that Logs table (there is a delay to be visible).

Can be missing callback domain urls or missing user consent in case of localhost.
If you have problem in localhost you need this: User Consent and Third-Party Applications
This was the solution in my case.

I hope this helps, if not please provide more details what is not working

jasonb · May 31, 2018, 8:55am

I’m experiencing this problem with Lock 11 and Angular 6. The authentication request seems to succeed on the network, I get a 200 response with a JSON object like { login_ticket: “stuff”, co_verifier: “more stuff”, co_id: “yet more” }. But the Lock popup just shows “WE’RE SORRY, SOMETHING WENT WRONG WHEN ATTEMPTING TO LOG IN.” and nothing further happens. Nothing is showing in the “Logs” dashboard.

simjoeweb · May 24, 2019, 12:23am

I have the exact same issue. Using Lock 11.16.0 and react. Nothing is showing up in the logs.

konrad.sopala · May 24, 2019, 9:38am

Hey there @simjoeweb and @jasonb!

Quite a strange case as you’re able to get 200 status code. Let em dig into it further and potentially ask more questions if needed. I will try to establish the reasoning with tool maintainers and see what might be the potential root cause!

konrad.sopala · May 27, 2019, 2:37pm

@simjoeweb @jasonb can I ask you a few questions that repo maintainers need to know?

We would like to know what console displays?
Was this working on a previous version if so which one?

Thank you a lot for providing all that context!

konrad.sopala · May 27, 2019, 4:11pm

Also what rules and hooks you have enabled?

konrad.sopala · May 30, 2019, 4:07pm

Hey there have you had a chance to see my last message?

joaquincrippa · June 1, 2019, 7:35pm

Hello @konrad.sopala, I’m just having the same issue. Console displays nothing, however the auth0 server response is 200 ok, including in body login_ticket, code_verifier and co_id. Lock modal displays “We’re sorry, something went wrong attempting to login”. The auth0-lock version i’m using is 11.14.0. thanks in advance

konrad.sopala · June 3, 2019, 9:15am

Thank you a lot for providing that context! Let me dive into it with the engineering team and get back to you soon! It will be great if you can also provide us with the HAR file of the flow capturing that moment so we can see what happens behind the scenes:

If you can send me this one over private message, it would be perfect!

konrad.sopala · June 5, 2019, 11:10am

Hey there!

Have you had a chance to see my last message?