Version

v4.8.5

Reproduction link

https://nuxt.federicod.dev/

Steps to reproduce

1. git clone https://github.com/nuxt/example-auth0.git;
2. set Auth0 domain and client_id into nuxt.config.js (I am not using the .env file as it seems to me that it doesn't get embedded in the SPA after running npm run build)
3. set mode: spa
4. nuxt build
5. deploy the dist folder
6. access the website and try to login with [email protected]; [email protected]
7. after the callback URL is opened, it stays stuck there

On a more complicated platform I am developing, some API calls that are made on the callback URL to populate a Vuex store all yields unauthorized error, meaning that the token doesn't get stored at all.

When running example-auth0 and the application I am developing in development mode with npm run dev, everything works fine. So I suppose that something goes wrong only after running the build command.

What is expected ?

I expect the callback URL to be opened and the token received stored.

What is actually happening?

The SPA stays stuck at the callback URL and no token is stored.

Additional comments?

Webserver: Caddy
Configuration:

nuxt.federicod.dev {
        root /root/dev/example-auth0/dist
}

No errors are shown in the console.

Should web or spa be used in auth0 with a Nuxt Universal app ?

Do I understand correctly that you do not check the JWT tokens for the validity of the signature? Judging by the source code, the username is simply retrieved from the token. And whether it was signed by Auth0 or not - there is no verification.

If this is the case, there to be needed a note about this in the README of this example. Otherwise, many programmers will create work sites on the basis of this example, in which the authorization zone will be “hacked” with any Base64-encoded JWT issued by any script.

Problem

I try to follow the README.md and install the project locally. So i run npm install and it throws me the following error in the console:

npm install
npm WARN deprecated [email protected]2.6.11: [email protected]<3 is no longer maintained and not recommended for usage due to the number of issues. Please, upgrade your dependencies to the actual version of [email protected]3.
npm ERR! Unexpected end of JSON input while parsing near '...4.0","lodash.uniq":"^'

npm ERR! A complete log of this run can be found in:
npm ERR!     /Users/enux/.npm/_logs/2020-01-29T12_48_51_713Z-debug.log

How to reproduce

Clone the repository:
git clone https://github.com/nuxt/example-auth0.git
cd example-auth0

Install the dependencies:
npm install

Solution proposal

The core-js dependency should be updated inside the package.json, package-lock.json and yarn.json.

Looking for vuetify gui for auth-lock.

I want to make jumps with parameters but not query parameters.
exp:

middleware -> auth.js

import _ from 'lodash'

export default function(ctx) {
  if (!_.isEmpty(ctx.store.state.user)) {
    ctx.redirect({ name: 'index', query: { message: 'your login...' } })
  }
}

If you use the query parameters, the message will always exist when the user refreshes

Nothing to preview

From my understanding, there are three parts involved in a website:

• Client (Browser)
• Nuxt Server (For SSR)
• Backend Server (For API)

I understand that localStorage cannot be used for storing JWT token, cookie needs to be used.
But I don't understand if this is the cookie for Client -> Nuxt communication, or Nuxt -> Backend communication.
And if on the Backend Server(API), I used httpOnly, can I still use the cookie in the Nuxt Server to store the data?
From my understanding, it should not be since Nuxt is the middle layer for rendering. If it is so, what is the way to correctly store JWT?

Another confusion raised from this is, for nuxtServerInit, the { req } param, is this the request from Client -> Nuxt or Nuxt -> Backend?

Sorry for all these questions, I searched a lot online but can't seem to find answers to these questions which I belive will help others as well.
Thanks for the help.

No parser and no filepath given, using 'babel' the parser now but this will throw an error in the future. Please specify a parser or a filepath so one can be inferred.

I have tried a lot of methods and can't solve it. Ask for help.

What problem does this feature solve?

test

While you are working with middleware, I find that Windows objects are invoked. I wonder what you configured.
Could you help me use windows objects?

I edit custom in uniserval login auth0 test preview that work , But in project not work login form still show original . What wrong ?

Why don't you use '@nuxtjs/auth' ?
I can't see it in packages.json whereas in this website : https://auth.nuxtjs.org/getting-started/setup It says you need it.

Where to get token for backend api call?

Hello, where to get token for backend calls?

How to use token to implement auth this here without cookie at all ?

How to use token to implement auth this here without cookie at all ?

npm run dev show up the following errors:
ERROR Cannot find module 'webpack/lib/RequestShortener'
at Function.Module.resolveFilename (internal/modules/cjs/loader.js:594:15) at Function.Module.load (internal/modules/cjs/loader.js:520:25)
at Module.require (internal/modules/cjs/loader.js:650:17)
at require (internal/modules/cjs/helpers.js:20:18)
at Object.<anonymous> (nodemodules\terser-webpack-plugin\dist\index.js:16:48) at Module.compile (internal/modules/cjs/loader.js:702:30)
at Object.Module.extensions..js (internal/modules/cjs/loader.js:713:10) at Module.load (internal/modules/cjs/loader.js:612:32) at tryModuleLoad (internal/modules/cjs/loader.js:551:12) at Function.Module.load (internal/modules/cjs/loader.js:543:3)