Skip to content

feat: atproto oauth #273

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
zeucapua wants to merge 13 commits into
base: main
Choose a base branch
from
Draft

feat: atproto oauth #273

zeucapua wants to merge 13 commits into from
+1,896 −917

Conversation

@zeucapua
Copy link

@zeucapua zeucapua commented Jan 29, 2026
edited
Loading

Implements AT Protocol OAuth using @atproto/api and @atproto/oauth-client-node.

WIP: needs better UI for <AuthModal />.

Notes:

  • requires NUXT_SESSION_PASSWORD env variable to encrypt cookies
  • login will fail on preview due to the redirect URIs not matching the generated preview URL

@vercel
Copy link

vercel bot commented Jan 29, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
docs.npmx.dev Error Error Jan 29, 2026 9:23pm
npmx.dev Building Building Preview, Comment Jan 29, 2026 9:23pm
1 Skipped Deployment
Project Deployment Actions Updated (UTC)
npmx-lunaria Ignored Ignored Preview Jan 29, 2026 9:23pm

Request Review

43081j
43081j reviewed Jan 29, 2026
View reviewed changes
app/components/AuthModal.vue
<summary
class="text-fg-subtle cursor-pointer hover:text-fg-muted transition-colors duration-200"
>
What is an Atmosphere account?
Copy link
Collaborator

@43081j 43081j Jan 29, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i think we need to figure out a nice way to make account creation very clear, too.

currently if someone doesn't have a bsky account, and has no idea what atproto is, this info doesn't give them much. they need to now dig through the atproto docs and do some googling to find out how to make an account

so we should probably at least mention bsky as an example of how you might have such an account

Copy link
Contributor

@fatfingers23 fatfingers23 Jan 29, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'm good if we want to go ahead use selfhosted.social (it's mine and zeu's and I'm the admin of it) PDS for account creations. You start the OAuth flow to the server with the PDS's url and a create flag. With that the user can sign up for an account on the PDS and be redirected back to npmx authenticated.
This will give users handles ending in .selfhosted.social

I am also good if y'all want me to manage a PDS server with an alternate handle ending for npmx, like npmx.town. atproto oauth doesn't like serving apps if the account logging in shares a domain with the PDS. This is also just more branding if we want them to have that ending in the handle

43081j
43081j reviewed Jan 29, 2026
View reviewed changes
app/components/AuthButton.vue
:aria-label="ariaLabel"
@click="showModal = true"
>
{{ user?.miniDoc?.handle || 'login' }}
Copy link
Collaborator

@43081j 43081j Jan 29, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

user itself is a "minidoc", no? so this and the other usages can just be user?.handle?

43081j
43081j reviewed Jan 29, 2026
View reviewed changes
43081j
43081j reviewed Jan 29, 2026
View reviewed changes
@43081j
Copy link
Collaborator

43081j commented Jan 29, 2026

just a couple of minor comments but looks good to me, pretty straightforward! nice work 🎉

jonathanyeong
jonathanyeong reviewed Jan 29, 2026
View reviewed changes
server/api/auth/session.delete.ts Outdated
@@ -0,0 +1,9 @@
export default defineEventHandler(async event => {
const session = await useSession(event, {
password: process.env.NUXT_SESSION_PASSWORD as string,
Copy link
Contributor

@jonathanyeong jonathanyeong Jan 29, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we create an example .env file that we can commit so people know that they can set NUXT_SESSION_PASSWORD without digging into the code?

There's also runtime config (not sure if that's useful for this case)

fatfingers23
fatfingers23 reviewed Jan 29, 2026
View reviewed changes
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@43081j 43081j 43081j left review comments

+2 more reviewers

@jonathanyeong jonathanyeong jonathanyeong left review comments

@fatfingers23 fatfingers23 fatfingers23 left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@zeucapua @43081j @jonathanyeong @fatfingers23