Issue with Web3Auth MPC Core Kit using Auth0 verifier with verifierIdField as sub

narklm · November 1, 2023, 3:07pm

I’ve encountered an issue while implementing the Web3Auth MPC Core Kit with the Auth0 verifier.

Setup:

I followed the documentation to set up the Auth0 verifier with verifierIdField set to sub. In my code, the verifier is configured as follows:

{
  typeOfLogin: LOGIN.JWT,
  verifier: 'google-verifier',
  clientId: 'my-auth0-client-id',
  jwtParams: {
    domain: 'https://example.eu.auth0.com',
    connection: 'google-oauth2',
    verifierIdField: 'sub',
    scope: 'read:current_user openid profile email',
  },
}

Issue:

Logging in works seamlessly. However, when I attempt to send a transaction, it fails during the precompute step, returning the error:
"Invalid verifierID found in session data, failed to authorize, expected: google-oauth2|101515641884063852395 found google-oauth2"

This error seems related to the sub field.

Additional Information:

The standard Google verifier operates without any issues.
Other Auth0 verifiers (e.g., apple) produce the same error.
Switching verifierIdField to ‘email’ instead of ‘sub’ for both Google and Apple Auth0 verifiers works, but we want to retain sub as the verifierId instead of the email.
The verifierId in the session data stored on the app appears correct (confirmed via debugging), and the login process seems unaffected. The error only arises during the precompute step while signing a transaction.

Any guidance on resolving this would be highly appreciated!

vjgee · November 1, 2023, 11:45pm

@narklm Welcome Aboard!

Your request has been forwarded to our Dev team and we will get back with updates.

pepper · November 2, 2023, 3:40am

hello @narklm
can you tell me which documentation you followed?

Also, can you try follow the example application’s guide?

github.com

Web3Auth/web3auth-core-kit-examples/blob/main/mpc-core-kit-web/quick-starts/mpc-core-kit-react-quick-start/src/App.tsx

import { useEffect, useState } from "react";
import { Web3AuthMPCCoreKit, WEB3AUTH_NETWORK, IdTokenLoginParams, TssShareType, parseToken, getWebBrowserFactor, generateFactorKey, COREKIT_STATUS, keyToMnemonic, mnemonicToKey } from "@web3auth/mpc-core-kit";
import Web3 from 'web3';
import { BN } from "bn.js";


// Firebase libraries for custom authentication
import { initializeApp } from "firebase/app";
import { GoogleAuthProvider, getAuth, signInWithPopup, UserCredential } from "firebase/auth";

import "./App.css";

const verifier = "w3a-firebase-demo";

// Your web app's Firebase configuration
const firebaseConfig = {
  apiKey: "AIzaSyB0nd9YsPLu-tpdCrsXn8wgsWVAiYEpQ_E",
  authDomain: "web3auth-oauth-logins.firebaseapp.com",
  projectId: "web3auth-oauth-logins",
  storageBucket: "web3auth-oauth-logins.appspot.com",

This file has been truncated. show original

the flow is like this:

get the idToken
parse the token
fill out the verifierIDField with parsedToken.sub

narklm · November 9, 2023, 4:52pm

Your suggestion doesnt exactly fit our needs.
We’ve been testing and the problem remains, we think its a problem on your side as it grabs all the signatures, and process all the steps correctly until the precompute step when signing a transaction. The login works flawlesly aswell but the session cannot sign transactions which is essential in our app.

vjgee · December 12, 2023, 3:50am

@narklm Apologies for the delay.

I have forwarded your feedback to our Dev team and we will get back with further updates.