Facebook login error - migration to SFA

vishnu.rk · June 7, 2023, 6:48pm

Please provide the following details too when asking for help in this category:

SDK Version: @web3auth/single-factor-auth": ^6.0.0
Verifier Details:
- Verifier Name: root-facebook-verifier

We recently migrated to SFA login from PnP no modal SDK. We were able to successfully migrate our google verifier & custom verifier we created. But we are facing a blocker while doing the same for our facebook verifier. For SFA to work we created the manual login flow suggested by facebook to get the id_token

But after successful login when we are passing this id_token to create the web3auth session an error is getting thrown saying

Uncaught (in promise) Error: Error occurred while verifying paramsBad signature
    at eval (torusUtils.esm.js:78:1)
    at <anonymous>

Any idea how to get around this issue? This has something to do with facebook authentication web3auth is performing in PnP flow & and the facebook authentication we are using now. Please provide more info on this:

Thanks in advance
@shahbaz

vishnu.rk · June 8, 2023, 6:09am

Hey @shahbaz, could you please help us with this one?

shahbaz · June 8, 2023, 9:41am

Hey @vishnu.rk

For this to work, you would have to create a custom verifier with Facebook’s jwks. As you’re passing, the id_token has already been returned from Facebook. And using that jwks, we will verify the id_token passed through SFA to us using that jwks.

I haven’t tried this, but if you’re aren’t able to find the jwks for Facebook from their portal, the other approach would be to go via Auth0 and use the Facebook login from there.

vishnu.rk · June 8, 2023, 10:34am

Yes, this should work and we already thought about this.

But wouldn’t creating a new verifier mean that web3auth will be creating a new wallet for an already existing user on our platform?
Is it possible to use SFA along with old facebook verifier?

Also we are curious why this is different from google social login which we were able to successfully migrate to SFA. Is the id_token in the case of facebook social login issued by a different JWT provider like auth0 or firebase?

vishnu.rk · June 8, 2023, 12:50pm

Hey @shahbaz,

Could you please clarify the things mentioned in the previous comment as well?
We are kind of blocked on this issue and want to make a decision as soon as possible based on your reply.

Thanks

shahbaz · June 9, 2023, 4:57am

Yes, that’s true.

I think we have an option here, let me confirm with the team internally first.

shahbaz · June 9, 2023, 4:58am

What steps you took to migrate this?

vishnu.rk · June 9, 2023, 6:26am

We built the google login flow at our end and used the idToken received after the google login to create a new web3auth session in the old google social login verifier

vishnu.rk · June 9, 2023, 6:27am

Okay thanks, please let us know at the earliest @shahbaz

vishnu · June 11, 2023, 6:50am

Hey @shahbaz Any updates on this ?

vishnu · June 14, 2023, 7:13pm

@shahbaz Please provide an update to this, please let is know if what we are doing is not possible

shahbaz · June 18, 2023, 4:00pm

Hi @vishnu

Thank you for bringing this to my attention. I have shared the matter with the team and will keep you informed of any updates.

shahbaz · October 6, 2023, 5:55am

Hey @vishnu

Is this resolved?

Meanwhile, we have updated the package to 7.0.1.

Documentation

Also, we are running monthly community calls. If your issue remains unresolved, please join the call, and we can address it together.
Register https://w3a.link/community-call.