-
Notifications
You must be signed in to change notification settings - Fork 379
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Implementation of Oauth of Github, Google and Microsoft #4298
base: master
Are you sure you want to change the base?
Conversation
5ce7f18
to
68eaf7b
Compare
de2e213
to
d3f6b29
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Please see my remarks.
I have some additional comments apart from the direct in code messages:
- My major concern with the implementation is that the oauth related API and its implementation is not generalized enough. The configuration is good enough for the time being.
- I am not sure if we are allowed to use the Git Hub logo in our repo.
- Please invite @cservakt to review the JS and VueJS parts.
I did not do a thorough review of the oauth flow in authentication.py
after you addressed the above issues I will do another round concentrating on that.
Thanks for the hard work!
12c68e7
to
f064c2b
Compare
b4d5a0a
to
d3847d6
Compare
…s, commented lines
9db4828
to
afbf03b
Compare
afbf03b
to
b71af06
Compare
9256875
to
75072a3
Compare
75072a3
to
d6561b8
Compare
with DBSession(self.__config_db) as session: | ||
state_db = session.query(StateCodes) \ | ||
.filter(StateCodes.id == state_id) \ | ||
.first().state |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Expired states might not have been purged at this point - add an explicit check here for expires_at.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
fixed
.filter(StateCodes.state == new_state.state | ||
and | ||
StateCodes.expires_at == new_state.expires_at) \ | ||
.first().id |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It might be worthwhile to explicitly store other parameters of the "state" here as well - oauth provider, PKCE if added, etc.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
fixed
Pkce problem
fixes #4160
The right way it should look after logging in
new added button to log in with github
Changes: