documenso icon indicating copy to clipboard operation
documenso copied to clipboard
verified publisher icon documenso

NEXT_PRIVATE_OIDC_SKIP_VERIFY - ignored

Open mnbro opened this issue 1 year ago • 5 comments

Issue Description

My understanding is that setting NEXT_PRIVATE_OIDC_SKIP_VERIFY to true will skip mail verification for an OIDC authenticated user.

If the above assumption is true, this is not the case. The OIDC user is still required to be verified by email.

Steps to Reproduce

No response

Expected Behavior

No response

Current Behavior

No response

Screenshots (optional)

No response

Operating System [e.g., Windows 10]

No response

Browser [e.g., Chrome, Firefox]

No response

Version [e.g., 2.0.1]

1.6

Please check the boxes that apply to this issue report.

  • [X] I have searched the existing issues to make sure this is not a duplicate.
  • [X] I have provided steps to reproduce the issue.
  • [X] I have included relevant environment information.
  • [ ] I have included any relevant screenshots.
  • [X] I understand that this is a voluntary contribution and that there is no guarantee of resolution.
  • [ ] I want to work on creating a PR for this issue if approved

mnbro avatar Aug 08 '24 07:08 mnbro

Hello @mnbro, I've not been able to reproduce this.

Could you provide more details about your setup, the OIDC provider, and any error logs you encountered?

ephraimduncan avatar Sep 21 '24 20:09 ephraimduncan

Hi @ephraimduncan,

Could you please set the following environment variables:

NEXT_PRIVATE_OIDC_ALLOW_SIGNUP="true"
NEXT_PRIVATE_OIDC_SKIP_VERIFY="true"
NEXT_PUBLIC_DISABLE_SIGNUP="true"

After configuring these, are you able to sign in? Additionally, is email verification still required?

Thank you!

mnbro avatar Sep 23 '24 14:09 mnbro

I was able to sign in successfully without email verification being required. These were the steps I used.

  1. Performed a fresh installation of Documenso with a clean local database
  2. Set up OIDC with Auth0, including:
    • Manually added a user in Auth0 with an email (not verified) and password
    • Configured the environmental variables as above.

Could you let me know which version of Documenso you're currently using? If you're not on the latest version, try updating and let us know if the issue persists.

ephraimduncan avatar Sep 23 '24 21:09 ephraimduncan

I was able to sign in successfully without email verification being required. These were the steps I used.

  1. Performed a fresh installation of Documenso with a clean local database

  2. Set up OIDC with Auth0, including:

    • Manually added a user in Auth0 with an email (not verified) and password
    • Configured the environmental variables as above.

Could you let me know which version of Documenso you're currently using? If you're not on the latest version, try updating and let us know if the issue persists.

I am using 1.6. Are you able to reproduce it on this version?

mnbro avatar Sep 24 '24 07:09 mnbro

@mnbro that is fixed for me in v1.9.1-rc.9.

maximelehericy avatar Mar 25 '25 23:03 maximelehericy

This issues has been fixed.

ephraimduncan avatar Aug 23 '25 04:08 ephraimduncan