New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Improve oauth debugging #912
Comments
jwag956
added a commit
that referenced
this issue
Feb 4, 2024
Some providers e.g. Azure require the redirect URL to match exactly - including query params etc. To support that we now store any 'next' value in the session (fs_oauth_next). To enable better debugging a class that can be subclassed for each provider - the auth_response_error() method can be subclassed for better debugging/UX. Convert our Github and Google pre-defined providers to the new class method. Add support for Azure in the Oauth example code. Change OAUTH_HANDSHAKE_ERROR to include info from authlib. closes #912
jwag956
added a commit
that referenced
this issue
Feb 4, 2024
Some providers e.g. Azure require the redirect URL to match exactly - including query params etc. To support that we now store any 'next' value in the session (fs_oauth_next). To enable better debugging a class that can be subclassed for each provider - the auth_response_error() method can be subclassed for better debugging/UX. Convert our Github and Google pre-defined providers to the new class method. Add support for Azure in the Oauth example code. Change OAUTH_HANDSHAKE_ERROR to include info from authlib. closes #912
jwag956
added a commit
that referenced
this issue
Feb 4, 2024
Some providers e.g. Azure require the redirect URL to match exactly - including query params etc. To support that we now store any 'next' value in the session (fs_oauth_next). To enable better debugging a class that can be subclassed for each provider - the auth_response_error() method can be subclassed for better debugging/UX. Convert our Github and Google pre-defined providers to the new class method. Add support for Azure in the Oauth example code. Change OAUTH_HANDSHAKE_ERROR to include info from authlib. closes #912
Merged
jwag956
added a commit
that referenced
this issue
Feb 4, 2024
Some providers e.g. Azure require the redirect URL to match exactly - including query params etc. To support that we now store any 'next' value in the session (fs_oauth_next). To enable better debugging a class that can be subclassed for each provider - the auth_response_error() method can be subclassed for better debugging/UX. Convert our Github and Google pre-defined providers to the new class method. Add support for Azure in the Oauth example code. Change OAUTH_HANDSHAKE_ERROR to include info from authlib. closes #912
jwag956
added a commit
that referenced
this issue
Feb 4, 2024
Some providers e.g. Azure require the redirect URL to match exactly - including query params etc. To support that we now store any 'next' value in the session (fs_oauth_next). To enable better debugging a class that can be subclassed for each provider - the auth_response_error() method can be subclassed for better debugging/UX. Convert our Github and Google pre-defined providers to the new class method. Add support for Azure in the Oauth example code. Change OAUTH_HANDSHAKE_ERROR to include info from authlib. closes #912
jwag956
added a commit
that referenced
this issue
Feb 4, 2024
Some providers e.g. Azure require the redirect URL to match exactly - including query params etc. To support that we now store any 'next' value in the session (fs_oauth_next). To enable better debugging a class that can be subclassed for each provider - the auth_response_error() method can be subclassed for better debugging/UX. Convert our Github and Google pre-defined providers to the new class method. Add support for Azure in the Oauth example code. Change OAUTH_HANDSHAKE_ERROR to include info from authlib. closes #912
jwag956
added a commit
that referenced
this issue
Feb 4, 2024
Some providers e.g. Azure require the redirect URL to match exactly - including query params etc. To support that we now store any 'next' value in the session (fs_oauth_next). To enable better debugging a class that can be subclassed for each provider - the auth_response_error() method can be subclassed for better debugging/UX. Convert our Github and Google pre-defined providers to the new class method. Add support for Azure in the Oauth example code. Change OAUTH_HANDSHAKE_ERROR to include info from authlib. closes #912
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Lots of things can go wrong with oauth - especially for developers trying to get configuration correct.
RIght now - if oauthglue::oauthresponse gets an error when calling authlib to parse the response - we basically just redirect to /login - which is fine - but doesn't help developers.
easy improvement - add a signal so app developers can see/log errors.
The text was updated successfully, but these errors were encountered: