Signin with Twitter doesn't work

[Andrei Rikitianskii]

Hi Google Identity team.

Today I've tried to use new feature Twitter IDP, and I got a problem. I've installed everything according your documentation.

As a result, Twitter provider appeared in the provider list. However, when I tried to sign in by using it, I got the following error:

I've created a new email and twitter account to be sure that I've never used the same email before. But this behavior is repeating anyway.

I would appreciate any help

Best,

Andrei

[Adam Dawes]

Hi Andrei,

In general, please take these kinds of questions are better asked in Stack Overflow. Will reply here for now but if you have more trouble, please post there.

Can you please include the steps to reproduce this error. I'm not sure if this is working as intended or a bug. For Identity Toolkit, we automatically work to link multiple authentication methods to the same user account. That means that if alice@gmail signs up for an app with a username/password on her desktop and then logs in via Google IDP on her phone, she ends up in the same account in the app. For security reasons, the user may be forced to confirm a previous authentication method in order to gain access to their account. That's what it looks like is happening in this case. I'm assuming the steps you went through are:

- Signed up with username/password

- Signed out

- Signed in with Twitter 

- Asked for email address

-> Was asked to type in password

This kind of flow is likely to happen for Twitter and Facebook logins because neither of them is authoritative for the user's email address. We don't want to create a back door into the user's account in your app because their Twitter or Facebook account got hacked (if the user's gmail account gets hacked, it's game over anyway because attacker can use email recovery to gain access to your app).

I hope that helps. If you're experiencing something different, please provide steps to reproduce.

--
You received this message because you are subscribed to the Google Groups "Google Identity Toolkit" group.
To unsubscribe from this group and stop receiving emails from it, send an email to google-identity-t...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.

--

Adam Dawes | Sr. Product Manager | ada...@google.com | +1 650-214-2410

[Andrei Rikitianskii]

Hi Adam,

Than you for the quick response.

This problem is reproduced even for "unknown" email for Identity Toolkit.

Here are steps:

1) I created completely new email address and twitter account based on this email.

2)  I've never used this email/twitter account to loggin in any other devices.I tried to loggin to our website with this twitter account.

3) Received the same error.

I did a screenshot of browser and developer tools displaying error message. It is very strange, but it works with Facebook very well when I reproduce the same scenario.

Additionally, I've attached a screenshot of my widget code.

Hope this information helps to  guess where the problem is.

Thanks,

Andrei

To unsubscribe from this group and stop receiving emails from it, send an email to google-identity-toolkit+unsub...@googlegroups.com.

For more options, visit https://groups.google.com/d/optout.

[Jin Liu]

Hi Andrei,

Thanks for the screenshot. Is your site open to public? If not, I will contact you in private to get your project information to investigate the issue.

Thanks,

Jin