This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Identity Platform SMS Authentication Failure

Posted on 03-13-2023 04:43 PM
cameron123
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

I'm using identity platform to log a user in with MFA. i'm using the javascript sdk and i can see the network request to v2/accounts/mfaSignIn:start fails with the error below. recaptcha seems to work fine and mfaSignIn:start includes the recaptcha token. an earlier call to v3/relyingparty/verifyPassword also works fine and uses the same API key and service. it just started happening today and has been on and off, so i don't think it's something on my end. Logs explorer in the Cloud Console doesn't show any more information about the error. The error is occuring across multiple projects and multiple organizations.

"The phone verification request contains an invalid application verifier. The reCAPTCHA token response is either invalid or expired."

0 5 787
Topic Labels
0 Likes
5 REPLIES 5

Posted on --/--/---- --:-- AM
dionv
Staff
Reply posted on --/--/---- --:-- AM

Hello cameron123,

reCAPTCHA v3 will never interrupt your users, so you can run it whenever you like without affecting conversion. reCAPTCHA works best when it has the most context about interactions with your site, which comes from seeing both legitimate and abusive behavior. For this reason, we recommend including reCAPTCHA verification on forms or actions as well as in the background of pages for analytics.

Note: reCAPTCHA tokens expire after two minutes. If you're protecting an action with reCAPTCHA, make sure to call execute when the user takes the action rather than on page load.

0 Likes

Posted on --/--/---- --:-- AM
cameron123
Bronze 1
Bronze 1
In response to dionv
Reply posted on --/--/---- --:-- AM

We are using firebase.auth.RecaptchaVerifier from firebase npm package 8.10.1. This depends on @firebase/auth 0.16.8. There are no dependencies on a recaptcha package. I see API calls to:

https://www.googleapis.com/identitytoolkit/v3/relyingparty/getRecaptchaParam
https://www.google.com/recaptcha/api2/reload
https://www.google.com/recaptcha/api2/userverify
https://www.google.com/recaptcha/api2/reload

It's the same API calls whether the SMS works or not. it's v2 of recaptcha, always. sometimes mfa works and sometimes it doesn't

 

Posted on --/--/---- --:-- AM
prashant90
Bronze 1
Bronze 1
Reply posted on --/--/---- --:-- AM

@cameron123have you got any solution for this? I am also getting the same error and same behaviour sometimes it works and sometimes doesn't

0 Likes

Posted on --/--/---- --:-- AM
cameron123
Bronze 1
Bronze 1
In response to prashant90
Reply posted on --/--/---- --:-- AM

no unfortunately not and itโ€™s annoyingly intermittent. I recreated the problem again today so itโ€™s still persisting for me.

 

Do you use a vpc service perimeter on your google project? Iโ€™m wondering if itโ€™s related

Posted on --/--/---- --:-- AM
prashant90
Bronze 1
Bronze 1
In response to cameron123
Reply posted on --/--/---- --:-- AM

We are not using vpc service perimeter.

Top Labels in this Space
Top Solution Authors
View all