Buy Hosting

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

Account destroyed upon signing in with second OAuth provider

General Discussion

1 Posts 1 Posters 126 Views

H Offline

H Offline
hello-smile6
wrote on last edited by

#1

I created an account already, but it was just destroyed when I signed in via Github. I had already signed in using Google, did it malfunction?
1 Reply Last reply
0

Suggested Topics

S

What's the best strategy to integrate nodeBB with another account system?
Scheduled Pinned Locked Moved General Discussion

0 Votes

5 Posts

490 Views

J

@Samson-Liu to expand on @PitaJ's reply:

The recommended method of sharing sessions between two separate and distinct applications is through OAuth2. We recommend this approach because NodeBB maintains its own user records, so that we can keep track of user-related metrics and other data. Relying on another database would be tricky, prone to breaking, and quite possibly dangerous.

Luckily, it's quite straightforward to get things working with OAuth2!

The first step is getting your application to expose an OAuth2 endpoint. If you're running a Node.js based app, you can use a module called OAuth2orize.

Once that is set up, you'll want to take a look at the SSO plugin skeleton for customised OAuth deployments -- nodebb-plugin-sso-oauth. You'll take this plugin, fork it, and modify it to communicate with your OAuth endpoint.

Once everything is working properly, you should be able to register and log in/out via your web app.
M

How do I see a user's IP address after they've deleted their account?
Scheduled Pinned Locked Moved General Discussion

0 Votes

2 Posts

2k Views

J

Check out the event lot page in the ACP (under advanced). The user's deletion event should have been logged, and the IP address should have been saved.

... as long as your NodeBB is new enough, that is 🙂
N

Account security issue
Scheduled Pinned Locked Moved Solved General Discussion

0 Votes

3 Posts

1k Views

N

thanks, I hava been update to v0.7.0 and fixed the isuse
H

Account locked temporarily Issues?
Scheduled Pinned Locked Moved General Discussion locked nodebb

0 Votes

14 Posts

10k Views

Q

I use mongo so I have to follow a different approach to unlock my account
launch your mongo cli, switch to the nodebb db and run
db.objects.remove({"_key":"lockout:YOUR_UID"})
uid is usually 1 for admin

If you don't know what your uid is you can run
db.objects.remove({"_key": { $regex: /lockout:.*/ }})
to unlock all locked accounts

Becareful when doing this as I'm not sure if it would have any other side effects I'm not aware of. It's only meant to be a quick way restore order if you keep locking yourself out during dev
N

SSO-LDAP(windows ad) and account import?
Scheduled Pinned Locked Moved General Discussion

0 Votes

3 Posts

2k Views

J

Hi @nashsai -- if you have some programming experience, you can create an LDAP SSO plugin, using our existing SSO plugins (fb, google, twitter) as a template. You would have to replace the underlying library to use passport-ldap.