Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Provide a clean mechanism to lock refresh tokens to sdk versions #1074

Conversation

ericanderson
Copy link
Member

@ericanderson ericanderson commented Jan 7, 2025

Fixes #1073

Example usage would be:

import { $osdkMetadata } from "@mygenerated/osdk";

createPublicOauthClient(myClientId, foundryUrl, "/auth/callback", { refreshTokenMarker: $osdkMetadata.extraUserAgent });

$refreshTokenMarker: undefined,
};

const oldLocalStorageKey = `@osdk/oauth : refresh : ${client.client_id}`;
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ensure that people not using this feature won't get logged out on upgrade of @osdk/oauth

$refreshTokenMarker: "magic_marker_friend",
};

const localStorageKey =
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Make sure that if you do specify the refreshTokenMarker that it is used.

@@ -237,7 +243,7 @@ export function createAuthorizationServer(
| "revocation_endpoint"
>
> {
const issuer = `${new URL(ctxPath, url)}`;
const issuer = `${new URL(ctxPath, url + "/")}`;
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Fix an issue where Tim's tests weren't working if you forgot trailing slash

@@ -24,6 +24,7 @@
"clean": "rm -rf lib dist types build tsconfig.tsbuildinfo",
"fix-lint": "eslint . --fix && dprint fmt --config $(find-up dprint.json)",
"lint": "eslint . && dprint check --config $(find-up dprint.json)",
"test": "vitest run --pool=forks",
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think Tim's changes were not properly failing build due to this not being present.

@ericanderson ericanderson changed the title Provide a clean mechanism to lock refresh tokens to generated sdk ver… Provide a clean mechanism to lock refresh tokens to sdk versions Jan 7, 2025
ssanjay1
ssanjay1 previously approved these changes Jan 8, 2025
@policy-bot policy-bot bot dismissed ssanjay1’s stale review January 8, 2025 20:27

Invalidated by push of d717767

@ericanderson ericanderson force-pushed the 1073-tokens-with-outdated-permissions-cause-403-errors-when-user-loads-new-version-of-app-provide-way-to-get-new-token-with-new-permissions-on-load branch from 1c60479 to dee814c Compare January 13, 2025 22:29
@ericanderson ericanderson merged commit 696c59c into main Jan 23, 2025
8 checks passed
@ericanderson ericanderson deleted the 1073-tokens-with-outdated-permissions-cause-403-errors-when-user-loads-new-version-of-app-provide-way-to-get-new-token-with-new-permissions-on-load branch January 23, 2025 20:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
3 participants