Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(auth): add authentication endpoints #6265

Merged
merged 83 commits into from
Feb 2, 2024
Merged

feat(auth): add authentication endpoints #6265

merged 83 commits into from
Feb 2, 2024

Conversation

pKorsholm
Copy link
Contributor

@pKorsholm pKorsholm commented Jan 30, 2024
edited
Loading

What

  • Add authentication endpoints:
    • /auth/[scope]/[provider]
    • /auth/[scope]/[provider]/callback
  • update authenticate-middleware handler
  • Add scope field to user
  • Add unique constraint on scope and entity_id

note: there's still some remaining work related to jwt auth to be handled, this is mainly focussed on session auth with endpoints

@pKorsholm
initial implementation
dacdb27
@pKorsholm
add test for invalid scope
cd38e4c
@pKorsholm
get config from scope not db
d3fd771
@pKorsholm
assign config from scope
512f5df
@pKorsholm
fix package.json
908e5e6
@pKorsholm
optional providers
4bd6491
@pKorsholm
make providers options
9869c71
@pKorsholm
rename auth to authentication
36d51ef
@pKorsholm
more renaming
7553ea0
@pKorsholm
update package name
ecd2250
@pKorsholm
add create-customer and customers/me routes
333a268
@pKorsholm
add changeset
036e577
@pKorsholm
rm auth endpoints from branch
9d49a5d
@pKorsholm
cleanup for pr
99c8e2d
@pKorsholm
add fields to customer creation endpoint
94cf842
@pKorsholm
add fields to customer creation endpoint
e6baee6
@pKorsholm
delete file
76ca08e
@pKorsholm
update query-config
0418435
@pKorsholm
rename steps
fe2c5c3
@pKorsholm
add create-customer and customers/me routes
d8e5415
@pKorsholm
add changeset
9c6a487
@pKorsholm
rm auth endpoints from branch
5cc7742
@pKorsholm
cleanup for pr
44dbffd
@pKorsholm
add fields to customer creation endpoint
d33f05d
@pKorsholm
add fields to customer creation endpoint
e4b0808
@pKorsholm
delete file
560162a
@pKorsholm
update query-config
2742d5d
@pKorsholm
rename steps
b92d8a0
@pKorsholm
add auth folders
e6a4d59
@pKorsholm
add middlewares
58144bb
@pKorsholm pKorsholm changed the base branch from feat/customer-store to develop February 1, 2024 01:15
@pKorsholm pKorsholm marked this pull request as ready for review February 1, 2024 02:51
@pKorsholm pKorsholm requested review from a team as code owners February 1, 2024 02:51
@pKorsholm
Feat(auth): Add user scope field (#6288)
ec43f6f 
* update datamodel

* update scope handlers

* add index migration

* fix integration tests

* fix integration tests
riqwan
riqwan approved these changes Feb 1, 2024
View reviewed changes
Copy link
Contributor

@riqwan riqwan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

added some comments, lgtm otherwise!

packages/auth/src/providers/email-password.ts Show resolved Hide resolved
packages/auth/src/providers/email-password.ts Outdated Show resolved Hide resolved
packages/auth/src/providers/email-password.ts Show resolved Hide resolved
packages/medusa/src/api-v2/auth/[scope]/[authProvider]/callback/route.ts Outdated Show resolved Hide resolved
packages/medusa/src/api-v2/store/customers/route.ts Outdated Show resolved Hide resolved
packages/auth/src/models/auth-user.ts Outdated Show resolved Hide resolved
packages/medusa/src/api-v2/auth/[scope]/[authProvider]/callback/route.ts

const { success, error, authUser, location } = authResult
if (location) {
res.redirect(location)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

question: shouldn't the client be the one doing the redirect?

packages/medusa/src/api-v2/auth/[scope]/[authProvider]/route.ts Show resolved Hide resolved
adrien2p
adrien2p reviewed Feb 1, 2024
View reviewed changes
Copy link
Member

@adrien2p adrien2p left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

few questions :D

packages/medusa/src/api-v2/auth/[scope]/[authProvider]/callback/route.ts Outdated Show resolved Hide resolved
packages/medusa/src/api-v2/auth/[scope]/[authProvider]/callback/route.ts
const authResult = await service.validateCallback(authProvider, authData)

const { success, error, authUser, location } = authResult
if (location) {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

if there is a location (the redirect could be configured) then we don't check any success or failure?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

yes, we could validate to ensure that success is required if you think that's appropriate? 😄 just figured that in case of a redirect you would want that no matter what

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

in general you have a success redirect and a failure redirect that eventually could have custom query parameters, let see that later

packages/medusa/src/api-v2/store/customers/route.ts Outdated Show resolved Hide resolved
packages/medusa/src/api-v2/store/customers/route.ts Outdated Show resolved Hide resolved
@olivermrbl olivermrbl changed the title Feat/add authentication endpoints for v2 feat(auth): add authentication endpoints Feb 1, 2024
@kodiakhq kodiakhq bot merged commit 9fda6a6 into develop Feb 2, 2024
17 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@adrien2p adrien2p adrien2p left review comments

@riqwan riqwan riqwan approved these changes

Assignees
No one assigned
Labels
automerge team: medusa
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@pKorsholm @riqwan @adrien2p @srindom