search

syl20lego / insomnia-plugin-aws-cognito-token

Insomnia plugin for AWS Cognito
MIT License
44 stars 8 forks source link

Unable to verify secret hash for client: Using the plugin to hit https://localhost:8300 (ssl enabled mkcert) but I get error #7

Open sagun786 opened 4 years ago

sagun786 commented 4 years ago

I used the manual installation of the plugin using https://github.com/syl20lego/insomnia-plugin-aws-cognito-token/issues/5#issuecomment-629664927 .

I have doubled checked all credentials for Cognito but I keep getting an error

Unable to verify secret hash for client 56n1ij8fic######e5inkjb8nc

Screenshot:

Screenshot 2020-06-04 at 11 06 39 AM

Here my line of questions for troubleshooting

(i) Am I getting this issue because I am using https://localhost:8300 as the auth link (and probably this plugin needs extra config for localhost play, I already have added local https support using mkcert and added the callback url as https://localhost:8300 in Cognito)

(ii) Or Is it something specific to the plugin because it is manually installed instructions followed https://github.com/syl20lego/insomnia-plugin-aws-cognito-token/issues/5#issuecomment-629664927 .

Here are other screenshots

Screenshot 2020-06-04 at 11 13 00 AM Screenshot 2020-06-04 at 11 13 14 AM Screenshot 2020-06-04 at 11 13 23 AM Screenshot 2020-06-04 at 11 13 32 AM Screenshot 2020-06-04 at 11 14 15 AM
sagun786 commented 4 years ago

@syl20lego Is this feature supported in the plugin to include client secret for App Client that is generated at Cognito

https://stackoverflow.com/questions/37438879/unable-to-verify-secret-hash-for-client-in-amazon-cognito-userpools

syl20lego commented 4 years ago

@sagun786 I'm not using client secret feature, maybe try the token type 'id' instead. Otherwise maybe you can create a PR (maybe with a new token type, secret) for your feature and I will be glad to include it.

syl20lego commented 3 years ago

Hi, could you try version 0.15.0 and see if this fixes the issues ?