jackrobertscott / authpack-client Goto Github PK

I am having two issues with AuthPack.

1. I cannot assign a team to a guarded page. So that only members of a specific team can view it. Let's say I wanted to guard page /home.html and only make it accessible to Team X. I have no way of doing that and I've looked all over the docs.

2. The javascript https://scripts.v1.authpack.io/index.js is creating a blank white space in page loads. My page content loads right after the loading spinner. With AuthPack, there's a white space period between the spinner and page load. Video to show what I'm talking about : https://www.saucy.io/uploads/b/30753761-448405199843462052/screen-capture_975.mp4

Hope these can get fixed. Thanks.

Hi, I have setup AuthPack for my website, (I have been testing my website on my localhost). I have guarded a page called content.html and added a login button to index.html, Then when I login, It sends me to content.html and then sends me back to index.html, I am assuming this is an issue with the login logging out when I reload the page

This seems like a great project. I notice in your documentation you recommend storing access tokens in local storage, which sounds like a bad idea [1] especially if using authpack's payments feature. Do you plan to implement secure session management (e.g. along the lines of Auth0)?

In particular, see [1]. "If you have a single-page app (SPA) with no corresponding backend server, your SPA should request new tokens on login and store them in memory without any persistence. To make API calls, your SPA would then use the in-memory copy of the token." Auth0 stores sessions on its servers and SPAs simply make silent reauthorization requests when tokens are wiped from memory (e.g. when the is page refreshed) [2]. They also implement PKCE [3] to prevent against token interception attacks.

[1] https://auth0.com/docs/tokens/guides/store-tokens
[2] https://auth0.com/blog/introducing-auth0-single-page-apps-spa-js-sdk/#Behind-the-Curtain
[3] https://tools.ietf.org/html/rfc7636

Hi !! Thanks a lot for your work. I'm implement the tool in webflow.

How can I send the user id to Google tag manager (datalayer.push() ) after the login?

Thanks in advance

<button data-authpack="open" data-listening="true"> Login </button>

A cookie associated with a cross-site resource at http://authpack.io/ was set without the SameSite attribute. A future release of Chrome will only deliver cookies with cross-site requests if they are set with SameSite=None and Secure. You can review cookies in developer tools under Application>Storage>Cookies and see more details at https://www.chromestatus.com/feature/5088147346030592 and https://www.chromestatus.com/feature/5633521622188032.

Is it possible to always show the login window without explicitly click on the button? Is there anyway to add a callback when the authentication was successful?

Can you please enable support for Canadian currency?

Stripe already supports CAD so this should be simple to enable.

Just tried using github login...

Error:
Cannot read property 'split' of null

Problem explained in video

https://share.getcloudapp.com/9Zu0Gp7e

Thanks for your help

I could not connect with stripe because it indicates an error

I think there would be many users, that would like to authenticate through Discord