Have last several months on app requiring Yahoo login. Was working great for months, took two weeks to focus on another project, come back today and I get the following error:
"error": "invalid_request",
"error_description": "InternalOAuthError: Failed to fetch user profile"
This occurs both via my app or with the Auth0 test function on the Auth0 dashboard.
So it appears when this has happened in the past it has only been a temporary issue.
I am using auth0-spa-js with Vue. I get a push notification from Yahoo that i have successfully signed in, so there is some other get that occurs afterwards that returns 302.
Has anyone experienced this yet? Is there a fix coming? This app is reliant on Yahoo so access is key for me.
My assumption is that Yahoo has changed something on their end and it’s not reflected in the Yahoo Social Connection in the Auth0 dashboard. I’ll give it a try myself.
Update: just enabled Yahoo and I don’t even get that far, already getting an error page on Yahoo end saying:
Apologies … seemed like a simply fix but it is not working for me.
First, my app is Fantasy Sports app and I only have two options in Yahoo under API Permissions: 1) Read 2) Read / Write
versus the Auth0 connections structure which has 4 1) Basic Profile 2) extended profile 3) Basic Profile Write 4) Extended Profile Write
So the options do not align.
I tried all of the options under the Auth0 dashboard and all options in any combination resulted in the same error described my original post, all using the “Try” function in dashboard.
So i will provide my tenant details by PM as suggested
It doesn’t like like Auth0 supports the Fantasy Sports scopes out of the box, I don’t see an option in our Auth0 Dashboard > Social Connections > Yahoo config for it. So, I assume, that would require a custom social connection, if that’s needed (unless/until it gets updated in the Auth0 Dashboard).
Or easier: pass the respective necessary scopes for Fantasy Sports as connection_scope, as per Add Scopes/Permissions to Call Identity Provider APIs. (I haven’t tested this myself for Yahoo in particular, should work).
But that aside: it seems that Yahoo changes something again once more. FYI @andres.aguiar
This is a screenshot I took yesterday, when I tested the Yahoo connection, regarding the permission settings:
Today, the options looks like this (they seem to have removed the “Profiles (Social Directory)” section, renamed it to “Relationships (Social Directory)” with only two scopes.
It seems that if you don’t select any scope on Auth0’s side (which will cause Auth0 to ask just for ‘openid’), and enable all permissions in the app, including Fantasy Sports, it prompts the user for consent for those:
