Kinde - Notice history

Notice history

2024 Sep

2024 Aug

For some customers, connecting to the Kinde Management API could result in 4xx errors
  • Update
    Update

    At 09:58 AEST on 22 August, we deployed an update to add API scopes to the Kinde Management API. Following this, a few customers reported errors with token exchange with the API, but it only seemed to generate an error about 50% of the time. We started to investigate from the first issue report.

    The team initially investigated this as an isolated issue impacting a few customers and only for about 50% of API calls. The team realized that it was a much wider problem hours later, as more customers started getting similar errors.

    The root cause turned out to be an aggressive timeout setting in the production infrastructure, which had been set for security reasons. The issue was hard to detect because the API was functioning as expected before the timeout, but when a request exceeded the timeout, an incorrect token was returned that contained no scopes. So when customers tried to use the token, the API returned a 403 error. Customers using a cached token did not receive any errors due to backwards compatibility of the API scope change.

    We deployed a fix to resolve the issue at 17:21 AEST, total incident time was 7 hours and 23 minutes.

    We communicated with impacted customers throughout the incident.

  • Resolved
    Resolved

    A fix has been deployed, which will resolve the connection issues to the management API. Please reach out to customer support if you're still having problems. A follow up will be posted on this incident by tomorrow.

  • Identified
    Identified

    The issue has been identified and a fix is being rolled out. Status will be updated to resolved when the fix has been deployed.

  • Investigating
    Investigating

    Some customers may have received the following error code SCOPE_MISSING when accessing the management API. We are currently investigating this issue

2024 Jul to 2024 Sep

Next