Authentication no longer works after MetaMask 10.26.1

Perhaps this is better asked here: we never had problems with our Moralis-based authentication solution untl MetaMask 10.26.1. Here are details on our issues:

Is this something we can solve on our end? This - Authentication API (after Metamask 10.26.1 update) - gives me the confidence that we can use a different config than we use now and that the signature request does not appear because we are using some standard format incorrectly.

Here’s our current config:

  const now = new Date();
  const fifteenMinutes = 900000;
  const expirationTime = new Date(now.getTime() + fifteenMinutes);
  const websiteUrl = new URL("https://blumint.com/" as string);

  const params = {
    timeout: 120,
    domain: websiteUrl.hostname,
    uri: websiteUrl.toString(),
    statement: 'Please sign this message to add your wallet to BluMint',
    notBefore: now.toISOString(),
    expirationTime: expirationTime.toISOString(),
  };

Hey @joeblu,

Thanks for reaching out to us. Unfortunately, the issue is on Metamask end so even if we make any changes on our side, it will not resolve the issue since the source of the issue is Metamask.

You can go ahead and ask the devs in the issue you linked above. Otherwise, we cannot help any further with this particular issue. The only suggestion will be to downgrade the Metamask wallet until a new working version is pushed.

Hey @YosephKS or @cryptokid,

EDIT: Ignore below. This is my misunderstanding.

Any way I can remove www. from being prefixed to the domain returned by Moralis.Auth.requestMessage()? We pass domain: blumint.com into this function but it returns raw.domain with www. prefixed to the value.

As mentioned here – https://github.com/MetaMask/metamask-extension/issues/18241#issuecomment-1478087338.

Who is adding that www prefix? I didn’t see that added before

Check what this returns

This topic was automatically closed 5 days after the last reply. New replies are no longer allowed.