Amplify-js: Auth: signIn always returns { challengeName : "NEW_PASSWORD_REQUIRED" }
Describe the bug
The Auth.signIn() function always returns a new password challenge in the user object:
{ challengeName : "NEW_PASSWORD_REQUIRED" }, even after doing Auth.completeNewPassword()
The user status is "CONFIRMED" in the AWS Cognito user list.
To Reproduce
Steps to reproduce the behavior:
- Create a new user
- Start sign in flow:
signIn(username, password )
.then(user => {
if ((user.challengeName == 'NEW_PASSWORD_REQUIRED')) {
this._setCompletePasswordState(user);
} else {
this.props.onSignIn(user);
}
})
- Start complete password flow:
completeNewPassword(params)
.then(response => {
console.log('password changed: ', response);
this.props.onSignIn();
})
- Log out
- Log back in and inspect user payload
Expected behavior
I think the challengeName should be empty
Screenshots
If applicable, add screenshots to help explain your problem.
Desktop (please complete the following information):
- OS: macOS
- Browser: Chrome
- Version: 68
Additional context
I am currently getting around this by running checkCurrentAuth() after signIn() and using a catch to detect if the user needs to reset their password:
signIn({ username, password })
.then(user => {
checkCurrentAuth()
.then(() => {
this.props.onSignIn(user);
})
.catch(() => {
this._setCompletePasswordState(user);
});
})
zyzski
All 9 comments
@zyzski after finishing the auth challenge, can you go to the Cognito Console to see if the user status is changed from FORCE_NEW_PASSWORD to CONFIRMED?
powerful23
on 26 Sep 2018
The user status is CONFIRMED in the AWS Cognito console
zyzski
on 27 Sep 2018
@zyzski So the first time when you sign in, you got to change the password and after that your user status is CONFIRMED in the cognito console. But the next time when you sign in again, the response from Cognito still contains the challenge right?
powerful23
on 27 Sep 2018
yes. i was able to complete the reset password flow but the challenge response never goes away, so I can't determine when to correctly prompt for a reset
zyzski
on 27 Sep 2018
@zyzski Can you pm me your some of your sample requests? like request id with timestamp, or har file
gwander
on 4 Oct 2018
You appear to be asigning the value to user.challengeName instead of reading it.
I think if (user.challengeName = 'NEW_PASSWORD_REQUIRED') should be if (user.challengeName === 'NEW_PASSWORD_REQUIRED') ?
See: https://aws-amplify.github.io/docs/js/authentication#complete-new-password
r-moore
on 17 May 2019
@zyzski Are you still experiencing this issue with the latest aws-amplify?
jordanranz
on 3 Jun 2019
@zyzski - Closing this issue due to inactivity. If needed feel free to repost, but include the version of aws-amplify you are using.
haverchuck
on 14 Jun 2019
You appear to be asigning the value to user.challengeName instead of reading it.
I think
if (user.challengeName = 'NEW_PASSWORD_REQUIRED')should beif (user.challengeName === 'NEW_PASSWORD_REQUIRED')?See: https://aws-amplify.github.io/docs/js/authentication#complete-new-password
You solved my issue too! Thank you!! Dumb mistake on my part.
Was:
cognitoUser.challengeName = 'Enabled / FORCE_CHANGE_PASSWORD'
Now:
cognitoUser.challengeName === 'Enabled / FORCE_CHANGE_PASSWORD'
jefelewis
on 28 Aug 2020
Related issues
lucasmike
路
3Comments
rayhaanq
路
3Comments
josoroma
路
3Comments
ldgarcia
路
3Comments
TheRealRed7
路
3Comments
Most helpful comment
You appear to be asigning the value to user.challengeName instead of reading it.
I think
if (user.challengeName = 'NEW_PASSWORD_REQUIRED')should beif (user.challengeName === 'NEW_PASSWORD_REQUIRED')?See: https://aws-amplify.github.io/docs/js/authentication#complete-new-password