Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Issue #2643] Initial auth #3492

Merged
merged 11 commits into from
Jan 13, 2025
Merged

[Issue #2643] Initial auth #3492

merged 11 commits into from
Jan 13, 2025

Conversation

acouch
Copy link
Collaborator

@acouch acouch commented Jan 10, 2025
edited
Loading

Summary

Fixes #2643

Time to review: 30 mins

Changes proposed

doug-s-nava and others added 10 commits January 7, 2025 10:03
@doug-s-nava
[Issue #2654] Next login flow backend (#3182)
2f2f471 
* adds route at /api/auth/callback to be hit by the flask API at the completion of the login flow
* adds jwt token parsing logic
* adds support for a "SESSION_SECRET" env var
* adds a User page for temporary testing
@doug-s-nava
[Issue #3043] add client side user context (#3215)
45fbd20 
* adds a context provider and hook to allow client components to access up to date logged in user information
* adds a NextJS route to return user data decrypted from the session cookie passed up from the client
* makes some temporary updates to the feature flags table in order for that page
to act as a proof of concept for the functionality
* moves some feature flags and loading spinner code to a more suitable location.
@doug-s-nava
[Issue #2656] client side logout route (#3275)
032f6b6 
Creates a Node route for logging out to log out a user, which
* calls the API logout endpoint
* removes client side cookie

Also adds fetch function to use to call the API logout route and a dummy logout button to use for testing
@doug-s-nava
[Unticketed] move fetcher files out of API directory (#3287)
3c9794d
@acouch @doug-s-nava
[Issue #2653] Sign in component (#3281)
f7c1248
@doug-s-nava
[Issue #3249] Add auth ui feature flag and refactor feature flag syst…
f73dffe 
…em for client side use (#3374)

* rewrites the FeatureFlagManager and useFeatureFlag hook to allow syncing flags between server and client using cookies
* adds the `authOn` feature flag in frontend code and terraform
* refactors the `environments` setup a bit to more easily expose feature flags
* splits functionality that does not benefit from being held in the FeatureFlagsManager class into a helper file
* moves feature flag manager file into a nested directory
@doug-s-nava
[Issue #3247] logged in state for header with email address (#3458)
bb662dd 
* updates to session management to allow for decrypting the login.gov JWT in order to pull out user email
* creation of a logged in state for the header
@acouch
[Issue #2962] Login modal (#3433)
6f82fa2 
## Summary
Fixes #2962

### Time to review: __15 mins__

## Changes proposed

* Adds a modal for the login link
* Moves the env route handler to a redirect


#### Mobile

![image](https://github.com/user-attachments/assets/4d44f545-f1ce-419e-898d-dde3d859f55b)

#### Desktop

![image](https://github.com/user-attachments/assets/a34ead51-57f7-4c9b-a2e4-631f58e085f3)


### TODO

- [x] verify it is accessible
- [x] add tests
- [x] look over again
@doug-s-nava
[Issue #3247] login header follow up fixes (#3480)
96f6b65 
* fix bug where mobile login dropdown appeared on top of mobile menu
* improve spacing on mobile login dropdown
@doug-s-nava
[Issue #3244] auth login home and error redirects (#3470)
65221c5 
* the callback route redirects to the home page on success, or an unauthorized page if no token is present or error page in error cases
* creates error and unauthorized pages
* adds middleware to implement the correct status codes on these redirects
@acouch acouch marked this pull request as ready for review January 10, 2025 21:35
@doug-s-nava
Copy link
Collaborator

does this need a review? is there new stuff in here, or has all of this already been reviewed?

@acouch
Copy link
Collaborator Author

acouch commented Jan 13, 2025

is there new stuff in here, or has all of this already been reviewed?

This has all been reviewed.

doug-s-nava
doug-s-nava approved these changes Jan 13, 2025
View reviewed changes
Copy link
Collaborator

@doug-s-nava doug-s-nava left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

✅ ✅ ✅ ✅

did not re-review but all of this has previously been approved. Rubber stamping the merge of the release branch.

@acouch acouch merged commit b17f8e3 into main Jan 13, 2025
21 checks passed
@acouch acouch deleted the feature/nextjs-auth branch January 13, 2025 17:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@doug-s-nava doug-s-nava doug-s-nava approved these changes

@coilysiren coilysiren Awaiting requested review from coilysiren coilysiren is a code owner

@mdragon mdragon Awaiting requested review from mdragon mdragon is a code owner

@andycochran andycochran Awaiting requested review from andycochran andycochran is a code owner

@btabaska btabaska Awaiting requested review from btabaska btabaska is a code owner

@chouinar chouinar Awaiting requested review from chouinar chouinar is a code owner

@widal001 widal001 Awaiting requested review from widal001 widal001 is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

SGG/Login.Gov Integration (Next.js <-> API)
2 participants
@acouch @doug-s-nava